Business Central
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:business-central:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Business Central (a6afc014-623d-5ee7-b68e-5f1e5396aa81) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-20306 |
vulnerable | 2026-06-08 05:29:08.937984 |
Details available
A flaw was found in the BPMN editor in version jBPM 7.51.0.Final. Any authenticated user from any project can see the name of Ruleflow Groups from other projects, despite the user not having access to those projects. The highest threat from this vulnerability is to confidentiality.
Published: 2021-06-01T13:38:07.000Z
Updated: 2024-08-03T17:37:23.673Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-14841 |
vulnerable | 2026-06-08 05:12:56.242322 |
Details available
A flaw was found in the RHDM, where an authenticated attacker can change their assigned role in the response header. This flaw allows an attacker to gain admin privileges in the Business Central Console.
Published: 2022-10-17T00:00:00.000Z
Updated: 2025-05-13T20:33:55.317Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-14840 |
vulnerable | 2026-06-08 05:12:56.240983 |
Details available
A flaw was found in the RHDM, where sensitive HTML form fields like Password has auto-complete enabled which may lead to leak of credentials.
Published: 2022-10-17T00:00:00.000Z
Updated: 2025-05-13T20:38:21.469Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-14839 |
vulnerable | 2026-06-08 05:12:56.238615 |
Details available
It was observed that while login into Business-central console, HTTP request discloses sensitive information like username and password when intercepted using some tool like burp suite etc.
Published: 2022-04-01T22:17:27.000Z
Updated: 2024-08-05T00:26:39.124Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.