VDB

CVE-2021-40497

CVE-2021-40497 PUBLISHED CVSS 5.300000190734863 MEDIUM

SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation could lead to exposure of some system specific data like its version.

EPSS 0.24% · 47.0th percentile

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.24%
47.0th percentile

Affected Products

VendorProductVersions
SAP SESAP BusinessObjects Analysis, (edition for OLAP)< 420, < 430
sapbusinessobjects_analysis420, 430

Timeline

  • Oct 12, 2021 CVE Published
  • Oct 13, 2021 EPSS Score
  • Dec 9, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 3, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 27, 2022 EPSS Score
  • Jul 24, 2022 EPSS Score
  • Nov 14, 2022 EPSS Score
  • Jan 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›