Sap Business Intelligence Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

4.243
42035
43034
4.129
4.311

Przeciwdziałanie

Official Fix52
Temporary Fix0
Workaround0
Unavailable0
Not Defined61

Wykorzystywanie

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined113

Wektor dostępu

Not Defined0
Physical0
Local4
Adjacent11
Network98

Uwierzytelnianie

Not Defined0
High8
Low57
None48

Interakcja z użytkownikiem

Not Defined0
Required53
None60

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤30
≤49
≤536
≤633
≤723
≤84
≤96
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤49
≤536
≤636
≤721
≤84
≤97
≤100

VulDB

≤10
≤20
≤35
≤429
≤539
≤617
≤713
≤87
≤93
≤100

NVD

≤10
≤20
≤30
≤41
≤56
≤632
≤722
≤816
≤97
≤105

CNA

≤10
≤20
≤30
≤40
≤58
≤65
≤75
≤81
≤93
≤106

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k0
<5k25
<10k59
<25k29
<50k0
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k40
<2k9
<5k30
<10k28
<25k6
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (14): 1.0, 2.0, 4.0, 4.00, 4.1, 4.2, 4.3, 4.10, 4.20, 4.30, 403, 410, 420, 430

Link to Product Website: https://www.sap.com

Typ oprogramowania: Business Process Management Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2023-09-127.47.3SAP BusinessObjects Business Intelligence Platform Web Intelligence HTML Interface privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-42472
2023-09-127.17.0SAP BusinessObjects Business Intelligence Platform Promotion Management information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-40622
2023-09-125.35.2SAP BusinessObjects Business Intelligence Platform Version Management System information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-37489
2023-08-083.33.2SAP BusinessObjects Business Intelligence information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-39440
2023-07-115.75.7SAP BusinessObjects Business Intelligence Platform privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-36917
2023-05-096.36.3SAP BusinessObjects Business Intelligence Platform Login Token information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-28762
2023-05-095.25.1SAP BusinessObjects Business Intelligence Platform Redirect$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30741
2023-05-095.25.1SAP BusinessObjects Business Intelligence Platform Redirect$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-31406
2023-05-094.64.5SAP BusinessObjects Business Intelligence Platform Central Management Service information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-31404
2023-05-096.16.0SAP BusinessObjects Business Intelligence Platform information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.06CVE-2023-30740
2023-04-116.76.7SAP BusinessObjects Business Intelligence Platform Promotion Management information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-28765
2023-03-146.86.7SAP BusinessObjects Business Intelligence Platform privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-27896
2023-03-146.16.0SAP BusinessObjects Business Intelligence Platform Web Services privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-27271
2023-03-149.29.0SAP Business Objects Business Intelligence Platform CMC privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-25616
2023-03-144.94.8SAP BusinessObjects Business Intelligence Platform Web Services information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-27894
2023-02-144.44.4SAP BusinessObjects Business Intelligence Web Intelligence User Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-23856
2023-02-148.18.0SAP BusinessObjects Business Intelligence Platform privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-24530
2023-02-146.46.3SAP BusinessObjects Business Intelligence Platform information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-0020
2023-01-109.29.0SAP BusinessObjects Business Intelligence Analysis Edition for OLAP privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0022
2023-01-106.86.7SAP BusinessObjects Business Intelligence Platform CMC Application Crystal Reports cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0018
2023-01-104.04.0SAP BusinessObjects Business Intelligence Platform Web Intelligence User Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-0015
2022-12-135.35.2SAP Business Intelligence Platform Web Intelligence weak authentication$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-41263
2022-12-125.35.2SAP BusinessObjects Business Intelligence Platform Monitoring DB information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-31596
2022-10-125.55.5SAP BusinessObjects Business Intelligence Platform/SE Credentials information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-39013
2022-10-123.73.6SAP BusinessObjects Business Intelligence Platform information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-35296

88 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 88 results.

więcej wpisów autorstwa Sap

PoprzedniPrzeglądKolejny

Interested in the pricing of exploits?

See the underground prices here!