CVE-2026-27683 in BusinessObjects Business Intelligence Platformالمعلومات

الملخص

بحسب MITRE • 14/04/2026

SAP BusinessObjects Business Intelligence application allows an authenticated attacker to inject malicious JavaScript payloads through crafted URLs. When a victim accesses the URL, the script executes in the user�s browser, potentially exposing restricted information. This results in a low impact on confidentiality with no impact on integrity and availability.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Sap

حجز

23/02/2026

إفشاء

14/04/2026

الاعتدال

تمت الموافقة

إدخال

VDB-357276

CPE

جاهز

CWE

CWE-79 (مؤكد)

CVSS

4.1 (CNA)

EPSS

0.00034

KEV

لا

النشاطات

منخفض جدًا

القطاع

Lawfirm, Transportation, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-27683
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-27683
CVE Details	https://www.cvedetails.com/cve/CVE-2026-27683/

التالي ▸نظرة عامة ◂ السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!