CVE-2021-33686 MEDIUM

CVE-2021-33686

Vendor Sap Se
Product SAP Business One
Published September 14, 2021
Last update August 3, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Under certain conditions, SAP Business One version - 10.0, allows an unauthorized attacker to get access to some encrypted sensitive information, but does not have control over kind or degree.

Key dates

02Disclosure timeline

September 14, 2021 CVE published
August 3, 2024 Record updated