Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Binary hijack in SAP BusinessObjects Business Intelligence (Installer)
Vulnerability Description
SAP Business Objects Installer - versions 420, 430, allows an authenticated attacker within the network to overwrite an executable file created in a temporary directory during the installation process. On replacing this executable with a malicious file, an attacker can completely compromise the confidentiality, integrity, and availability of the system
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
SAP Business Objects 代码问题漏洞
Vulnerability Description
SAP Business Objects是德国思爱普(SAP)公司的一个商业智能套件。 SAP BusinessObjects Installer 存在代码问题漏洞,该漏洞源于允许网络内经过身份验证的攻击者覆盖安装过程中在临时目录中创建的可执行文件。
CVSS Information
N/A
Vulnerability Type
N/A