Lucene search

SapCVELIST:CVE-2023-36917

HistoryJul 11, 2023 - 2:48 a.m.

CVE-2023-36917 Password Change rate limit bypass in SAP BusinessObjects Business Intelligence Platform

2023-07-1102:48:10

CWE-307

sap

www.cve.org

cve-2023-36917

sap businessobjects

business intelligence platform

password change

rate limit bypass

unauthorized attacker

user session

brute force

integrity loss

system availability

account takeover

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

43.1%

JSON

SAP BusinessObjects Business Intelligence Platform - version 420, 430, allows an unauthorized attacker who had hijacked a user session, to be able to bypass the victim’s old password via brute force, due to unrestricted rate limit for password change functionality. Although the attack has no impact on integrity loss or system availability, this could lead to an attacker to completely takeover a victim’s account.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP BusinessObjects Business Intelligence Platform",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "4.20"
      },
      {
        "status": "affected",
        "version": "430"
      }
    ]
  }
]

References

me.sap.com/notes/3320702

www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

43.1%

JSON

Related for CVELIST:CVE-2023-36917