← voltar
CVE-2020-6222

CVE-2020-6222

CVSS 5.4 MEDIUMEPSS 0.7%
SAP Business Objects Business Intelligence Platform (Web Intelligence HTML interface), versions 4.1, 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Produtos afetados
SAP SE · SAP BusinessObjects Business Intelligence Platform (Web Intelligence HTML interface)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://launchpad.support.sap.com/#/notes/2880804https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=544214202