Vulnerabilities > CVE-2018-2458 - Unspecified vulnerability in SAP Business ONE 9.2/9.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Under certain conditions, Crystal Report using SAP Business One, versions 9.2 and 9.3, connection type allows an attacker to access information which would otherwise be restricted.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
References
- http://www.securityfocus.com/bid/105307
- http://www.securityfocus.com/bid/105307
- https://launchpad.support.sap.com/#/notes/2670284
- https://launchpad.support.sap.com/#/notes/2670284
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499356993
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499356993