Known Vulnerabilities for Businessobjects Business Intelligence Platform by Sap

Listed below are 10 of the newest known vulnerabilities associated with "Businessobjects Business Intelligence Platform" by "Sap".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2023-42472 json	Due to insufficient file type validation, SAP BusinessObjects Business Intelligence Platform (Web Intelligence HTML interfac...	7.3 - HIGH	2023-09-12	2023-09-13
CVE-2023-27271 json	In SAP BusinessObjects Business Intelligence Platform (Web Services) - versions 420, 430, an attacker can control a maliciou...	7.5 - HIGH	2023-03-14	2023-04-11
CVE-2023-24530 json	SAP BusinessObjects Business Intelligence Platform (CMC) - versions 420, 430, allows an authenticated admin user to upload ma...	9.1 - CRITICAL	2023-02-14	2023-04-11
CVE-2023-0022 json	SAP BusinessObjects Business Intelligence Analysis edition for OLAP allows an authenticated attacker to inject malicious code...	8.8 - HIGH	2023-01-10	2023-01-18
CVE-2023-0020 json	SAP BusinessObjects Business Intelligence platform - versions 420, 430, allows an authenticated attacker to access sensitive ...	7.1 - HIGH	2023-02-14	2023-11-07
CVE-2023-0018 json	Due to improper input sanitization of user-controlled input in SAP BusinessObjects Business Intelligence Platform CMC applica...	6.1 - MEDIUM	2023-01-10	2023-01-13
CVE-2022-39014 json	Under certain conditions SAP BusinessObjects Business Intelligence Platform Central Management Console (CMC) - version 430, a...	5.3 - MEDIUM	2022-09-13	2022-10-01
CVE-2022-35295 json	In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themsel...	4.9 - MEDIUM	2022-09-13	2023-03-01
CVE-2022-35228 json	SAP BusinessObjects CMC allows an unauthenticated attacker to retrieve token information over the network which would otherwi...	8.8 - HIGH	2022-07-12	2022-07-15
CVE-2022-35169 json	SAP BusinessObjects Business Intelligence Platform (LCM) - versions 420, 430, allows an attacker with an admin privilege to r...	6 - MEDIUM	2022-07-12	2022-07-20

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Sap	Businessobjects Business Intelligence Platform	4.3
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.2
Application	Sap	Businessobjects Business Intelligence Platform	4.1
Application	Sap	Businessobjects Business Intelligence Platform	4.1
Application	Sap	Businessobjects Business Intelligence Platform	4.1
Application	Sap	Businessobjects Business Intelligence Platform	4.1
Application	Sap	Businessobjects Business Intelligence Platform	4.0
Application	Sap	Businessobjects Business Intelligence Platform	2.0
Application	Sap	Businessobjects Business Intelligence Platform	1.0

Results limited to 20 most recent known configurations