In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this…
sap·CWE-316·Published 2026-02-10
In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high impact on confidentiality and integrity, with no impact on availability.
In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high impact on confidentiality and integrity, with no impact on availability.
En SAP Business One, la información sensible se escribe en los archivos de volcado de memoria de la aplicación sin ofuscación. Obtener acceso a esta información podría potencialmente conducir a operaciones no autorizadas dentro del entorno B1, incluyendo la modificación de datos de la empresa. Este problema resulta en un alto impacto en la confidencialidad y la integridad, sin impacto en la disponibilidad.
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 3.1 | Primary | NVD | 5.8 | 0.6 | 5.2 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N |
| 3.1 | Primary | cve.org | 5.8 | — | — | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N |
| 3.1 | Secondary | NVD | 5.8 | 0.6 | 5.2 | CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N |