Denial-of-Service vulnerability in SAP Business One - version 10.0
CVE-2022-35168
7.5HIGH
Summary
An inadequacy in input sanitization of XML data in SAP Business One - version 10.0 allows attackers to exploit this vulnerability to execute a denial-of-service attack. This can lead to periods of system unavailability, impacting business operations and user access. Organizations using this version should assess their exposure and implement protective measures to mitigate potential threats.
Affected Version(s)
SAP Business one 10.0
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved