Information disclosure

2018-08-1416:29:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Admin tools in SAP BusinessObjects Business Intelligence, versions 4.1, 4.2, allow an unauthenticated user to read sensitive information (server name), hence leading to an information disclosure.

CPENameOperatorVersion
businessobjects_business_intelligenceeq4.1
businessobjects_business_intelligenceeq4.2

CPE	Name	Operator	Version
	businessobjects_business_intelligence	eq	4.1
	businessobjects_business_intelligence	eq	4.2

References

www.securityfocus.com/bid/105089

launchpad.support.sap.com/

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742