CVE-2023-40622

SAP BusinessObjects Business Intelligence Platform Promotion Management - versions 420, 430, under certain condition allows an authenticated attacker to view sensitive information which is otherwise restricted. On successful exploitation, the attacker can completely compromise the application...

EUVD-2017-9308

Malware in sbrugna...

EUVD-2020-29682

Malware in sbrugna...

EUVD-2021-18164

Malware in sbrugna...

EUVD-2017-7263

Malware in sbrugna...

EUVD-2018-5844

Malware in sbrugna...

EUVD-2019-11935

Malware in sbrugna...

EUVD-2021-27673

Malicious code in bioql PyPI...

CVE-2023-30740

SAP BusinessObjects Business Intelligence Platform - versions 420, 430, allows an authenticated attacker to access sensitive information which is otherwise restricted. On successful exploitation, there could be a high impact on confidentiality, limited impact on integrity and availability of the...

CVE-2023-27271

In SAP BusinessObjects Business Intelligence Platform Web Services - versions 420, 430, an attacker can control a malicious BOE server, forcing the application server to connect to its own admintools, leading to a high impact on availability...

CVE-2022-24693

Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8 have hardcoded credentials that are easily discovered, and can be used by remote attackers to authenticate via ssh. The credentials are stored in the firmware, encrypted by the crypt function...

CVE-2020-8839

Stored XSS was discovered on CHIYU BF-430 232/485 TCP/IP Converter devices before 1.16.00, as demonstrated by the /if.cgi TFsubmask field...

VulnCheck KEV: CVE-2021-31250

Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of sanitization of the input on the components man.cgi, if.cgi, dhcpc.cgi, ppp.cgi...

The vulnerability of microprogramming software for base stations (BS) in wireless communication with Baicells Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 allows a intruder to execute arbitrary code.

The vulnerability of microprogramming software for base stations BS in wireless communication systems of Baicells Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 is related to the lack of protective measures for website structures. Exploiting this vulnerability allows a malicious actor to execu...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-430)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-430 advisory. An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the VC handler and instruction emulati...

Upgraded Q -> 2 from #430 [1699028562977]

Judge has assessed an item in Issue 430 as 2 risk. The relevant finding follows: It’s not clear which token the OD token will be paired with in order to determine the price in the uniV3Relayer contract. Then the following lines are problematic: baseAmount = uint12810...

SAP BusinessObjects Business Intelligence Platform Information Disclosure Vulnerability

SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP. The platform combines market-leading SAP data integration products, data management products, and business intelligence BI products to eliminate system integration challenges and quickly and...

PT-2023-6626 · Sap · Sap Businessobjects Business Intelligence Platform

Name of the Vulnerable Software and Affected Versions: SAP BusinessObjects Business Intelligence Platform Promotion Management versions 420, 430 Description: The issue is related to insufficient protection of service data, which can be exploited by a remote attacker to impact the confidentiality,...

CVE-2023-37490

SAP Business Objects Installer - versions 420, 430, allows an authenticated attacker within the network to overwrite an executable file created in a temporary directory during the installation process. On replacing this executable with a malicious file, an attacker can completely compromise the...

PT-2023-4097 · Sap · Sap Businessobjects Business Intelligence Platform

Name of the Vulnerable Software and Affected Versions: SAP BusinessObjects Business Intelligence Platform versions 420, 430 Description: The issue allows an unauthorized attacker who has hijacked a user session to bypass the victim's old password via brute force due to an unrestricted rate limit...