CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

351 matches found

CVE-2026-44743

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS5.5AI score0.00028EPSS

Exploits0References1

RedhatCVE•added 3 days ago•4 views

CVE-2026-44755

SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of th...

4.3CVSS5.5AI score0.00014EPSS

Exploits0References1

NVD•added 4 days ago•6 views

CVE-2026-44755

4.3CVSS0.00014EPSS

Exploits0References2

NVD•added 4 days ago•11 views

CVE-2026-44743

3.7CVSS0.00028EPSS

Exploits0References2

Cvelist•added 4 days ago•34 views

CVE-2026-44755 Email Spoofing vulnerability in SAP Business Objects Business Intelligence Platform

4.3CVSS0.00014EPSS

Exploits0References2

CVE•added 4 days ago•17 views

CVE-2026-44755

CVE-2026-44755 affects SAP Business Objects Business Intelligence Platform. The issue arises from insufficient validation of email sending parameters by authenticated users, enabling email spoofing. Impact is described as low for integrity and no impact on confidentiality or availability (CVSS v3...

4.3CVSS5.5AI score0.00014EPSS

Exploits0References2

ATTACKERKB•added 4 days ago•4 views

CVE-2026-44755

4.3CVSS5.5AI score0.00014EPSS

Exploits0References3Affected Software1

Cvelist•added 4 days ago•32 views

CVE-2026-44743 Security Misconfiguration vulnerability in SAP Business Objects

3.7CVSS0.00028EPSS

Exploits0References2

CVE•added 4 days ago•21 views

CVE-2026-44743

CVE-2026-44743 involves SAP Business Objects. Under certain conditions, an unauthorized actor accessing a specific endpoint can leak sensitive information. Impact is described as LOW for confidentiality, with no impact on integrity or availability. The CVSS 3.1 vector is AV:N/AC:H/PR:N/UI:N/S:U/C...

3.7CVSS5.5AI score0.00028EPSS

Exploits0References2

ATTACKERKB•added 4 days ago•5 views

CVE-2026-44743

3.7CVSS5.5AI score0.00028EPSS

Exploits0References3Affected Software1

Vulnrichment•added 4 days ago•5 views

CVE-2026-44743 Security Misconfiguration vulnerability in SAP Business Objects

3.7CVSS5.5AI score0.00028EPSS

Exploits0References2

Positive Technologies•added 4 days ago•7 views

PT-2026-47531

3.7CVSS5.5AI score0.00028EPSS

Exploits0References3

RedhatCVE•added 2026/06/05 7:33 p.m.•8 views

CVE-2026-27683

SAP BusinessObjects Business Intelligence application allows an authenticated attacker to inject malicious JavaScript payloads through crafted URLs. When a victim accesses the URL, the script executes in the user�s browser, potentially exposing restricted information. This results in a low impact...

4.1CVSS5.5AI score0.00034EPSS

Exploits0References1

NVD•added 2026/04/14 12:16 a.m.•1 views

CVE-2026-24318

Due to an Insecure session management vulnerability in SAP Business Objects Business Intelligence Platform, an unauthenticated attacker could obtain valid session tokens and reuse them to gain unauthorized access to a victim�s session. If the application continues to accept previously issued toke...

4.2CVSS0.0007EPSS

Exploits0References2

ATTACKERKB•added 2026/04/14 12:6 a.m.•1 views

CVE-2026-24318

4.2CVSS5.8AI score0.0007EPSS

Exploits0References3Affected Software1

NVD•added 2026/02/10 4:16 a.m.•9 views

CVE-2026-0508

The SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker with high privileges to insert malicious URL within the application. Upon successful exploitation, the victim may click on this malicious URL, resulting in an unvalidated redirect to the attacker-controlled...

8.1CVSS0.00016EPSS

Exploits0References2

Cvelist•added 2026/02/10 3:4 a.m.•29 views

CVE-2026-24324 Denial of service (DOS) vulnerability in SAP BusinessObjects Business Intelligence Platform (AdminTools)

SAP BusinessObjects Business Intelligence Platform AdminTools allows an authenticated attacker with user privileges to execute a specific query in AdminTools that could cause the Content Management Server CMS to crash, rendering the CMS partially or completely unavailable and resulting in the...

6.5CVSS0.00042EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 9:20 a.m.•20 views

CVE-2021-33667

Under certain conditions, SAP Business Objects Web Intelligence BI Launchpad versions - 420, 430, allows an attacker to access jsp source code, through SDK calls, of Analytical Reporting bundle, a part of the frontend application, which would otherwise be restricted...

4.3CVSS6.8AI score0.00156EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:17 a.m.•4 views

CVE-2025-23185

Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in stack traces. Only an attacker with administrator level privileges has access to this disclosed information, and they...

4.1CVSS6.8AI score0.00104EPSS

Exploits0References1

Cvelist•added 2025/12/09 2:15 a.m.•27 views

CVE-2025-42896 Server-Side Request Forgery (SSRF) in SAP BusinessObjects Business Intelligence Platform

SAP BusinessObjects Business Intelligence Platform lets an unauthenticated remote attacker send crafted requests through the URL parameter that controls the login page error message. This can cause the server to fetch attacker-supplied URLs, resulting in low impact to confidentiality and integrit...

5.4CVSS0.00039EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by