Information Disclosure Vulnerability in SAP Business One (B1 Client Memory...

5.8 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

Description

In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high impact on confidentiality and integrity, with no impact on availability.

Basic Information

ID CVE-2026-24319

Source sap

Published Feb 10, 2026 at 03:03

Affected Product

Vendor SAP_SE

Product SAP Business One (B1 Client Memory Dump Files)

Version B1_ON_HANA 10.0

Affected Versions SAP_SE SAP Business One (B1 Client Memory Dump Files) B1_ON_HANA 10.0
SAP_SE SAP Business One (B1 Client Memory Dump Files) SAP-M-BO 10.0

CWE Classification

CWE-316

References

{
    "lastseen": "",
    "description": "In SAP Business One, sensitive information is written to the application\ufffds memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high impact on confidentiality and integrity, with no impact on availability.",
    "published": "2026-02-10T03:03:33.788Z",
    "modified": "2026-02-10T03:03:33.788Z",
    "type": "cve",
    "title": "Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files)",
    "source": "sap",
    "references": "https://me.sap.com/notes/3679346\nhttps://url.sap/sapsecuritypatchday",
    "id": "CVE-2026-24319",
    "bulletinFamily": "",
    "cwe": [
        "CWE-316"
    ],
    "cvelist": null,
    "sourceData": "SAP_SE SAP Business One (B1 Client Memory Dump Files) B1_ON_HANA 10.0\nSAP_SE SAP Business One (B1 Client Memory Dump Files) SAP-M-BO 10.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.8,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SAP Business One (B1 Client Memory Dump Files)",
    "version": "B1_ON_HANA 10.0",
    "vendor": "SAP_SE",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files)_CVE-2026-24319