Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSapCVELIST:CVE-2022-32246
HistoryJul 12, 2022 - 8:26 p.m.

CVE-2022-32246

2022-07-1220:26:21
CWE-89
sap
www.cve.org
4
sap business objects
bi platform
sql injection
confidentiality
integrity

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

22.7%

JSON

SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impact on confidentiality and integrity of the application

CNA Affected

[
  {
    "product": "SAP BusinessObjects Business Intelligence Platform (Visual Difference Application)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "420"
      },
      {
        "status": "affected",
        "version": "430"
      }
    ]
  }
]

Related

cve 1
prion 1
cnvd 1
nvd 1
cve
cve
CVE-2022-32246
2022-07-12 21:15:10
prion
prion
Design/Logic Flaw
2022-07-12 21:15:00
cnvd
cnvd
SAP BusinessObjects Business Intelligence Platform SQL注入漏洞
2022-07-15 00:00:00
nvd
nvd
CVE-2022-32246
2022-07-12 21:15:10

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

22.7%

JSON
Related for CVELIST:CVE-2022-32246
cve1prion1cnvd1nvd1