Design/Logic Flaw

2018-04-1015:29:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.0%

JSON

Improper Session Management in SAP Business Objects, 4.0, from 4.10, from 4.20, 4.30, CMC/BI Launchpad/Fiorified BI Launchpad. In case of password change for a user, all other active sessions created using older password continues to be active.

CPENameOperatorVersion
businessobjectseq4.0
businessobjectseq4.10
businessobjectseq4.20
businessobjectseq4.30

Name	Operator	Version
businessobjects	eq	4.0
businessobjects	eq	4.10
businessobjects	eq	4.20
businessobjects	eq	4.30

References

www.securityfocus.com/bid/103700

blogs.sap.com/2018/04/10/sap-security-patch-day-april-2018/

launchpad.support.sap.com/