CVE Vulnerabilities

CVE-2018-2458

Published: Sep 11, 2018 | Modified: Nov 21, 2024
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Under certain conditions, Crystal Report using SAP Business One, versions 9.2 and 9.3, connection type allows an attacker to access information which would otherwise be restricted.

Affected Software

Name Vendor Start Version End Version
Business_one Sap 9.2 (including) 9.2 (including)
Business_one Sap 9.3 (including) 9.3 (including)

References