3 matches found
CVE-2024-41730
In SAP BusinessObjects Business Intelligence Platform, if Single Signed On is enabled on Enterprise authentication, an unauthorized user can get a logon token using a REST endpoint. The attacker can fully compromise the system resulting in High impact on confidentiality, integrity and availabilit...
CVE-2024-41730
creationtimestamp| type| source ---|---|--- 2024-08-13 07:04:01+00:00| seen| https://t.me/cvedetector/2953 2024-08-13 14:45:15+00:00| published-proof-of-concept| https://t.me/HackingInsights/9738 2024-08-14 12:33:33+00:00| seen| https://t.me/kasperskyb2b/1373 2024-08-15 01:16:59+00:00| seen|...
CVE-2024-41730
Summary: CVE-2024-41730 affects SAP BusinessObjects Business Intelligence Platform, specifically versions 4.30 and 4.40 (per Nessus/PTSecurity). When Single Sign-On on Enterprise authentication is enabled, an unauthorised user can obtain a logon token via a REST endpoint, enabling full compromise...