VDB

CVE-2022-32245

CVE-2022-32245 PUBLISHED

SAP BusinessObjects Business Intelligence Platform (Open Document) - versions 420, 430, allows an unauthenticated attacker to retrieve sensitive information plain text over the network. On successful exploitation, the attacker can view any data available for a business user and put load on the application by an automated attack. Thus, completely compromising confidentiality but causing a limited impact on the availability of the application.

EPSS 0.60% · 70.0th percentile

Risk Scores

EPSS Score
0.60%
70.0th percentile

Affected Products

VendorProductVersions
SAP SESAP BusinessObjects Business Intelligence Platform (Open Document)420, 430
sapbusinessobjects_business_intelligence420, 430

Exploit Intelligence

Timeline

  • Aug 9, 2022 CVE Published
  • Aug 10, 2022 EPSS Score
  • Sep 25, 2022 EPSS Score
  • Nov 10, 2022 EPSS Score
  • Dec 27, 2022 EPSS Score
  • Feb 11, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Mar 29, 2023 EPSS Score
  • May 14, 2023 EPSS Score
  • Jun 29, 2023 EPSS Score
  • Aug 14, 2023 EPSS Score
  • Sep 30, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›