CVE Vulnerabilities

CVE-2021-27616

Published: May 11, 2021 | Modified: Jul 12, 2022
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Under certain conditions, SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9.3, 10.0, used to install SAP Business One for SAP HANA, allows an attacker to exploit an insecure temporary backup path and to access information which would otherwise be restricted, resulting in Information Disclosure vulnerability highly impacting the confidentiality, integrity and availability of the application.

Affected Software

Name Vendor Start Version End Version
Business-one-hana-chef-cookbook Sap 0.1.6 (including) 0.1.6 (including)
Business-one-hana-chef-cookbook Sap 0.1.7 (including) 0.1.7 (including)
Business-one-hana-chef-cookbook Sap 0.1.19 (including) 0.1.19 (including)
Business_one Sap 8.82 (including) 8.82 (including)
Business_one Sap 9.0 (including) 9.0 (including)
Business_one Sap 9.1 (including) 9.1 (including)
Business_one Sap 9.2 (including) 9.2 (including)
Business_one Sap 9.3 (including) 9.3 (including)
Business_one Sap 10.0 (including) 10.0 (including)

References