Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Code Injection vulnerability in SAP BusinessObjects Business Intelligence platform (Analysis edition for OLAP)
Vulnerability Description
SAP BusinessObjects Business Intelligence Analysis edition for OLAP allows an authenticated attacker to inject malicious code that can be executed by the application over the network. On successful exploitation, an attacker can perform operations that may completely compromise the application causing a high impact on the confidentiality, integrity, and availability of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
SAP BusinessObjects Analysis(Edition For Olap) 代码注入漏洞
Vulnerability Description
SAP BusinessObjects Analysis(Edition For Olap)是德国思爱普(SAP)公司的一种查询和分析工具。用于分析组织的多维数据。 SAP BusinessObjects Analysis(Edition For Olap)存在代码注入漏洞,该漏洞源于其允许经过身份验证的攻击者注入可由应用程序通过网络执行的恶意代码导致攻击者可以执行可能完全破坏应用程序的操作,从而对应用程序的机密性、完整性和可用性造成严重影响。
CVSS Information
N/A
Vulnerability Type
N/A