Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Server-Side Request Forgery in SAP BI Platform
Vulnerability Description
SAP BI Platform allows an attacker to modify the IP address of the LogonToken for the OpenDoc. On accessing the modified link in the browser a different server could get the ping request. This has low impact on integrity with no impact on confidentiality and availability of the system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
SAP Business Intelligence Platform 代码问题漏洞
Vulnerability Description
SAP Business Intelligence Platform是德国思爱普(SAP)公司的一款商业智能平台。 SAP Business Intelligence Platform存在代码问题漏洞,该漏洞源于攻击者可修改OpenDoc的LogonToken IP地址,可能导致不同服务器接收ping请求。
CVSS Information
N/A
Vulnerability Type
N/A