Sap Businessobjects_web_intelligence
5 CVEs affecting Sap Businessobjects_web_intelligence. Latest disclosed: 2024-04-09. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-25646 | High | 7.7 | 2024-04-09 | Due to improper validation, SAP BusinessObject Business Intelligence Launch Pad allows an authenticated attacker to access operating system information using c… |
CVE-2023-42476 | Medium | 6.8 | 2023-12-12 | SAP Business Objects Web Intelligence - version 420, allows an authenticated attacker to inject JavaScript code into Web Intelligence documents which is then… |
CVE-2023-42474 | Medium | 6.8 | 2023-10-10 | SAP BusinessObjects Web Intelligence - version 420, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link t… |
CVE-2022-22546 | Medium | 5.4 | 2022-02-09 | Due to improper HTML encoding in input control summary, an authorized attacker can execute XSS vulnerability in SAP Business Objects Web Intelligence (BI Launc… |
CVE-2021-33667 | Medium | 4.3 | 2021-07-14 | Under certain conditions, SAP Business Objects Web Intelligence (BI Launchpad) versions - 420, 430, allows an attacker to access jsp source code, through SDK c… |