Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Information Disclosure vulnerability in SAP BusinessObjects Web Intelligence
Vulnerability Description
Due to improper validation, SAP BusinessObject Business Intelligence Launch Pad allows an authenticated attacker to access operating system information using crafted document. On successful exploitation there could be a considerable impact on confidentiality of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
关键资源的不正确权限授予
Vulnerability Title
SAP BusinessObject Business Intelligence Launch Pad 信息泄露漏洞
Vulnerability Description
SAP BusinessObject Business Intelligence Launch Pad是德国思爱普(SAP)公司的适用于Business Intelligence platform的Web控制面板。 SAP BusinessObject Business Intelligence Launch Pad 4.2版本和4.3版本存在信息泄露漏洞,该漏洞源于验证不当,允许经过身份验证的攻击者使用精心设计的文档访问操作系统信息。
CVSS Information
N/A
Vulnerability Type
N/A