ByteOS Network

CVE Vulnerability Details :

CVE-2026-24319

PUBLISHED

More Info Official Page

Assigner-sap

Assigner Org ID-e4686d1a-f260-4930-ac4c-2f5c992778dd

Published At-10 Feb, 2026 | 03:03

Updated At-26 Feb, 2026 | 15:04

▼CVE Numbering Authority (CNA)

Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files)

In SAP Business One, sensitive information is written to the application�s memory dump files without obfuscation. Gaining access to this information could potentially lead to unauthorized operations within the B1 environment, including modification of company data. This issue results in a high impact on confidentiality and integrity, with no impact on availability.

Affected Products

Vendor

SAP SE

Product

SAP Business One (B1 Client Memory Dump Files)

Default Status

unaffected

Versions

Affected

B1_ON_HANA 10.0
SAP-M-BO 10.0

Problem Types

Type	CWE ID	Description
CWE	CWE-316	CWE-316: Cleartext Storage of Sensitive Information in Memory

Type: CWE

CWE ID: CWE-316

Description: CWE-316: Cleartext Storage of Sensitive Information in Memory

Metrics

Version	Base score	Base severity	Vector
3.1	5.8	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

Version: 3.1

Base score: 5.8

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

References

Hyperlink	Resource
https://me.sap.com/notes/3679346	N/A
https://url.sap/sapsecuritypatchday	N/A

Hyperlink: https://me.sap.com/notes/3679346

Resource: N/A

Hyperlink: https://url.sap/sapsecuritypatchday

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References