ГлавнаяУязвимости → CVE-2024-37179
7.7высокая

CVE-2024-37179

Описание

SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a specially crafted request to the Web Intelligence Reporting Server to download any file from the machine hosting the service, causing high impact on confidentiality of the application.

Затрагиваемое ПО
Sap Businessobjects business intelligence
CVSS
Балл7.7 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Источники
https://me.sap.com/notes/3478615https://url.sap/sapsecuritypatchday