Sap BusinessObjects Business Intelligence Platform 4.20

CPE Details

Sap BusinessObjects Business Intelligence Platform 4.20
sap
businessobjects_business_intelligence_platform
4.20
2018-04-09
14h27 +00:00
2021-07-26
16h45 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:sap:businessobjects_business_intelligence_platform:4.20:*:*:*:*:*:*:*

Informations

Vendor

sap

Product

businessobjects_business_intelligence_platform

Version

4.20

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-40500 2021-10-12 12h04 +00:00 SAP BusinessObjects Business Intelligence Platform (Crystal Reports) - versions 420, 430, allows an unauthenticated attacker to exploit missing XML validations at endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation can enable the attacker to retrieve arbitrary files from the server.
7.5
Haute
CVE-2019-0352 2019-09-10 14h03 +00:00 In SAP Business Objects Business Intelligence Platform, before versions 4.1, 4.2 and 4.3, some dynamic pages (like jsp) are cached, which leads to an attacker can see the sensitive information via cache and can open the dynamic pages even after logout.
7.5
Haute
CVE-2018-2471 2018-10-09 11h00 +00:00 Under certain conditions SAP BusinessObjects Business Intelligence Platform 4.10 and 4.20 allows an attacker to access information which would otherwise be restricted.
7.5
Haute
CVE-2018-2397 2018-03-14 18h00 +00:00 In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user controlled inputs which results in Cross-Site Scripting.
5.4
Moyen