Sap BusinessObjects Business Intelligence Platform 4.30

CPE Details

Sap BusinessObjects Business Intelligence Platform 4.30
sap
businessobjects_business_intelligence_platform
4.30
2018-04-09
14h27 +00:00
2021-07-26
16h45 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sap:businessobjects_business_intelligence_platform:4.30:*:*:*:*:*:*:*

Informations

Vendor

sap

Product

businessobjects_business_intelligence_platform

Version

4.30

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-40500 2021-10-12 12h04 +00:00 SAP BusinessObjects Business Intelligence Platform (Crystal Reports) - versions 420, 430, allows an unauthenticated attacker to exploit missing XML validations at endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation can enable the attacker to retrieve arbitrary files from the server.
7.5
High
CVE-2019-0352 2019-09-10 14h03 +00:00 In SAP Business Objects Business Intelligence Platform, before versions 4.1, 4.2 and 4.3, some dynamic pages (like jsp) are cached, which leads to an attacker can see the sensitive information via cache and can open the dynamic pages even after logout.
7.5
High
CVE-2018-2397 2018-03-14 18h00 +00:00 In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user controlled inputs which results in Cross-Site Scripting.
5.4
Medium