← volver
CVE-2022-32246

CVE-2022-32246

EPSS 0.4%CWE-89
SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impact on confidentiality and integrity of the application
Productos afectados
SAP SE · SAP BusinessObjects Business Intelligence Platform (Visual Difference Application)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://launchpad.support.sap.com/#/notes/3203079https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html