Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 does not limit the number of CUIDs that may be requested, which allows remote authenticated users to cause a denial of service via a large numCuids value in a GenerateCuids SOAPAction to the dswsbobje/services/biplatform URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP BusinessObjects Enterprise XI 'Dswsbobje'Web应用程序拒绝服务攻击漏洞
Vulnerability Description
Dswsbobje 是指Web服务提供者的Web应用程序的默认名称。 SAP BusinessObjects Enterprise XI 3.2版本不能限制被请求的CUID的数量。远程认证用户可以借助大量位于dswsbobje/services/biplatform URI的GenerateCuids SOAPAction中的numCuids值导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A