Open redirect

2020-04-1419:15:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.3%

JSON

The open document of SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to modify certain error pages to include malicious content. This can misdirect a user who is tricked into accessing these error pages rendered by the application, leading to Content Spoofing.

CPENameOperatorVersion
businessobjects_business_intelligence_platformeq4.1
businessobjects_business_intelligence_platformeq4.2

CPE	Name	Operator	Version
	businessobjects_business_intelligence_platform	eq	4.1
	businessobjects_business_intelligence_platform	eq	4.2

References

launchpad.support.sap.com/

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=544214202