VDB
CISA-2024-42375
CISA-2024-42375
PUBLISHED
CVSS 4.3 MEDIUM
Reported by sap · Published August 13, 2024
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload malicious code over the network, that could be executed by the application. On successful exploitation, the attacker can cause a low impact on the Integrity of the application.
Risk Scores
CVSS 3.1
4.3
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP_SE | SAP BusinessObjects Business Intelligence Platform | ENTERPRISE 430, 2025 |
| SAP_SE | SAP BusinessObjects Business Intelligence Platform | ENTERPRISE 430, 2025, ENTERPRISE 430 |
Timeline
- Aug 13, 2024 CVE Published
- Dec 10, 2024 CVE Updated