VYPR

Business One Integration

by SAP

CVEs (2)

  • CVE-2025-42998MedJun 10, 2025
    risk 0.34cvss 5.3epss 0.00

    The security settings in the SAP Business One Integration Framework are not adequately checked, allowing attackers to bypass the 403 Forbidden error and access restricted pages. This leads to low impact on confidentiality of the application, there is no impact on integrity and…

  • CVE-2021-38179Oct 12, 2021
    risk 0.00cvss epss 0.01

    Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows Admin User to see the captured packet contents which may include User credentials.