CVE-2023-27271

🗓️ 14 Mar 2023 06:11:15Reported by sapType

SAP BusinessObjects BI Platform (Web Services) version 420, 430 - CVE-2023-2727

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2023-27271 Server Side Request Forgery (SSRF) in the SAP BusinessObjects Business Intelligence platform	14 Mar 202305:01	–	cvelist
Vulnrichment	CVE-2023-27271 Server Side Request Forgery (SSRF) in the SAP BusinessObjects Business Intelligence platform	14 Mar 202305:01	–	vulnrichment
Prion	Code injection	14 Mar 202306:15	–	prion
NVD	CVE-2023-27271	14 Mar 202306:15	–	nvd
Tenable Nessus	SAP BusinessObjects Business Intelligence Platform Multiple Vulnerabilities (3287120)	15 Mar 202300:00	–	nessus

Nvd

Node

sap businessobjects_business_intelligence_platformMatch420

sap businessobjects_business_intelligence_platformMatch430

[
  {
    "defaultStatus": "unaffected",
    "product": "BusinessObjects Business Intelligence Platform (Web Services)",
    "vendor": "SAP",
    "versions": [
      {
        "status": "affected",
        "version": "420"
      },
      {
        "status": "affected",
        "version": "430"
      }
    ]
  }
]

Source	Link
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
launchpad	www.launchpad.support.sap.com/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Mar 2023 06:15Current

6.8Medium risk

Vulners AI Score6.8

CVSS36.5 - 7.5

EPSS0.00101

SSVC

CWE-918

sap businessobjects bi platform web services cve-2023-27271 security vulnerability nvd exploit