VDB
CVE-2020-6308
CVE-2020-6308
PUBLISHED
CVSS 5.300000190734863 MEDIUM
SAP BusinessObjects Business Intelligence Platform (Web Services) versions - 410, 420, 430, allows an unauthenticated attacker to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. On successful exploitation, attacker can scan internal network to determine internal infrastructure and gather information for further attacks like remote file inclusion, retrieve server files, bypass firewall and force the vulnerable server to perform malicious requests, resulting in a Server-Side Request Forgery vulnerability.
EPSS 82.06% · 99.2th percentile
Risk Scores
CVSS 3.0
5.300000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
82.06%
99.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| sap | businessobjects_business_intelligence_platform | 4.1, 4.2, 4.3 |
| SAP SE | SAP BusinessObjects Business Intelligence Platform (Web Services) | < 420, < 430, * |
Exploit Intelligence
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- Exploit script for SAP Business Objects SSRF (github-poc-repo)
- This script exploits and performs an SSRF (Server-Side Request Forgery) and Timing Attack against the SAP BusinessObjects Launchpad (CVE-2020-6308). It attempts to determine the status of various ports on a target IP address by measuring the response time of the application when attempting to authenticate against it. (github-poc-repo)
- This script exploits and performs an SSRF (Server-Side Request Forgery) and Timing Attack against the SAP BusinessObjects Launchpad (CVE-2020-6308). It attempts to determine the status of various ports on a target IP address by measuring the response time of the application when attempting to authenticate against it. (github-poc-repo)
- This script exploits and performs an SSRF (Server-Side Request Forgery) and Timing Attack against the SAP BusinessObjects Launchpad (CVE-2020-6308). It attempts to determine the status of various ports on a target IP address by measuring the response time of the application when attempting to authenticate against it. (github-poc-repo)
- This script exploits and performs an SSRF (Server-Side Request Forgery) and Timing Attack against the SAP BusinessObjects Launchpad (CVE-2020-6308). It attempts to determine the status of various ports on a target IP address by measuring the response time of the application when attempting to authenticate against it. (github-poc-repo)
…and 35 more exploits
Timeline
- Oct 20, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 13, 2023 EPSS Score
- Sep 15, 2023 EPSS Score