Insecure Temporary Folder Vulnerability in SAP Business One Chef Cookbook

Insecure Temporary Folder Vulnerability in SAP Business One Chef Cookbook

CVE-2021-27613 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Under certain conditions, SAP Business One Chef cookbook, version - 9.2, 9.3, 10.0, used to install SAP Business One, allows an attacker to exploit an insecure temporary folder for incoming & outgoing payroll data and to access information which would otherwise be restricted, which could lead to Information Disclosure and highly impact system confidentiality, integrity and availability.

Learn more about our Web Application Penetration Testing UK.