What the vulnerability does

01Description

Due to improper input sanitization of XML input in SAP Business One - version 10.0, an attacker can perform a denial-of-service attack rendering the system temporarily inoperative.

Key dates

02Disclosure timeline

July 12, 2022 CVE published
August 3, 2024 Record updated