Filtered by vendor Sap Subscriptions
Filtered by product Business One On Hana Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-2502 1 Sap 1 Business One On Hana 2024-11-21 N/A
TRACE method is enabled in SAP Business One Service Layer . Attacker can use XST (Cross Site Tracing) attack if frontend applications that are using Service Layer has a XSS vulnerability. This has been fixed in SAP Business One Service Layer (B1_ON_HANA, versions 9.2, 9.3).