SAP BusinessObjects Business Intelligence Platform Information Disclosure Vulnerability (CNVD-2023-40166)

SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP. A security vulnerability exists in SAP BusinessObjects Business Intelligence Platform lcmbiar file handling, which can be exploited by a remote attacker to submit a special request that could...

SAP BusinessObjects Business Intelligence Platform < 420, 430 Information Disclosure (3298961)

The version of SAP BusinessObjects Business Intelligence Platform installed on the remote Windows host is prior to 420, 430. It is, therefore, affected by an information disclosure vulnerability. An attacker with basic privileges in SAP BusinessObjects Business Intelligence Platform Promotion...

CVE-2023-28765

An attacker with basic privileges in SAP BusinessObjects Business Intelligence Platform Promotion Management - versions 420, 430, can get access to lcmbiar file and further decrypt the file. After this attacker can gain access to BI user’s passwords and depending on the privileges of the BI user,...

CVE-2023-28765 Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Promotion Management )

An attacker with basic privileges in SAP BusinessObjects Business Intelligence Platform Promotion Management - versions 420, 430, can get access to lcmbiar file and further decrypt the file. After this attacker can gain access to BI user’s passwords and depending on the privileges of the BI user,...

PT-2023-21947 · Sap · Sap Businessobjects Business Intelligence Platform

Name of the Vulnerable Software and Affected Versions: SAP BusinessObjects Business Intelligence Platform Promotion Management versions 420, 430 Description: An attacker with basic privileges can access the lcmbiar file and decrypt it, potentially gaining access to BI user passwords. Depending on...

CVE-2022-35169

SAP BusinessObjects Business Intelligence Platform LCM - versions 420, 430, allows an attacker with an admin privilege to read and decrypt LCMBIAR file's password under certain conditions, enabling the attacker to modify the password or import the file into another system causing high impact on...