Due to missing authentication check, SAP Business one License service API - version 10.0 allows an unauthenticated malicious user to send malicious http requests over the network. On successful exploitation, an attacker can break the whole application making it inaccessible.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap business one license service api 10.0 |