CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-0016

SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries. The exploitation of this issue could lead to SQL injection vulnerability and could allow an attacker to access, modify, and/or delete data from the backend database.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.5%

CVSS Severity

CVSS v3 Score 9.9

References

https://launchpad.support.sap.com/#/notes/3275391
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
https://launchpad.support.sap.com/#/notes/3275391
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

Products affected by CVE-2023-0016

Sap » Business Planning And Consolidation » Version: 800

cpe:2.3:a:sap:business_planning_and_consolidation:800
Sap » Business Planning And Consolidation » Version: 810

cpe:2.3:a:sap:business_planning_and_consolidation:810

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0016

Products

Pricing

Contact Us