Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in SAP Business Intelligence platform before January 2017 allows remote attackers to obtain sensitive information, modify data, cause a denial of service (data deletion), or launch administrative operations or possibly OS commands via a crafted SQL query. The vendor response is SAP Security Note 2361633.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Business Intelligence platform SQL注入漏洞
Vulnerability Description
SAP Business Intelligence platform是德国思爱普(SAP)公司的一套商业智能软件,它提供报表查询、数据分析、数据挖掘、数据备份和恢复等功能。 SAP Business Intelligence platform 2017年1月之前的版本中存在SQL注入漏洞。远程攻击者可借助特制的SQL查询利用该漏洞获取敏感信息、修改数据、造成拒绝服务(数据删除)或执行管理操作或操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A