Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSapCVELIST:CVE-2022-31596
HistoryDec 12, 2022 - 3:43 a.m.

CVE-2022-31596

2022-12-1203:43:40
CWE-668
sap
www.cve.org
1
sap businessobjects
monitoring
database
unauthorized access

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

Under certain conditions, an attacker authenticated as a CMS administrator and with high privileges access to the Network in SAP BusinessObjects Business Intelligence Platform (Monitoring DB) - version 430, can access BOE Monitoring database to retrieve and modify (non-personal) system data which would otherwise be restricted. Also, a potential attack could be used to leave the CMS’s scope and impact the database.

A successful attack could have a low impact on confidentiality, a high impact on integrity, and a low impact on availability.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP Business Objects Platform (Monitoring DB) ",
    "vendor": "SAP",
    "versions": [
      {
        "status": "affected",
        "version": "430"
      }
    ]
  }
]

Related

prion 1
cve 1
nessus 1
nvd 1
prion
prion
Design/Logic Flaw
2022-12-12 04:15:00
cve
cve
CVE-2022-31596
2022-12-12 04:15:09
nessus
nessus
SAP BusinessObjects Business Intelligence Platform 4.3 < 4.3 SP2 P5 Information Disclosure
2022-10-14 00:00:00
nvd
nvd
CVE-2022-31596
2022-12-12 04:15:09

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON
Related for CVELIST:CVE-2022-31596
prion1cve1nessus1nvd1