Lucene search
+L

936 matches found

redhatcve
redhatcve
added 2026/06/10 2:59 a.m.11 views

CVE-2026-44743

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS5.5AI score0.00188EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/10 2:59 a.m.9 views

CVE-2026-44755

SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of th...

4.3CVSS5.5AI score0.00109EPSS
Exploits0References1
nvd
nvd
added 2026/06/09 1:16 a.m.13 views

CVE-2026-44755

SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of th...

4.3CVSS0.00109EPSS
Exploits0References2
nvd
nvd
added 2026/06/09 1:16 a.m.26 views

CVE-2026-44743

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS0.00188EPSS
Exploits0References2
cve
cve
added 2026/06/09 12:21 a.m.34 views

CVE-2026-44755

CVE-2026-44755 affects SAP Business Objects Business Intelligence Platform. The issue arises from insufficient validation of email sending parameters by authenticated users, enabling email spoofing. Impact is described as low for integrity and no impact on confidentiality or availability (CVSS v3...

4.3CVSS5.5AI score0.00109EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/09 12:21 a.m.43 views

CVE-2026-44755 Email Spoofing vulnerability in SAP Business Objects Business Intelligence Platform

SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of th...

4.3CVSS0.00109EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/09 12:21 a.m.7 views

CVE-2026-44755

SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of th...

4.3CVSS5.5AI score0.00109EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/06/09 12:20 a.m.10 views

CVE-2026-44743 Security Misconfiguration vulnerability in SAP Business Objects

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS5.5AI score0.00188EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/09 12:20 a.m.10 views

CVE-2026-44743

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS5.5AI score0.00188EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2026/06/09 12:20 a.m.44 views

CVE-2026-44743 Security Misconfiguration vulnerability in SAP Business Objects

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS0.00188EPSS
Exploits0References2
cve
cve
added 2026/06/09 12:20 a.m.43 views

CVE-2026-44743

CVE-2026-44743 involves SAP Business Objects. Under certain conditions, an unauthorized actor accessing a specific endpoint can leak sensitive information. Impact is described as LOW for confidentiality, with no impact on integrity or availability. The CVSS 3.1 vector is AV:N/AC:H/PR:N/UI:N/S:U/C...

3.7CVSS5.5AI score0.00188EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/09 12:0 a.m.19 views

PT-2026-47531

Under certain conditions, when an unauthorized attacker accesses a specific endpoint, SAP Business Objects application leaks sensitive information .This has a low impact on the confidentiality of the data. There is no impact on integrity and availability of the application...

3.7CVSS5.5AI score0.00188EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/05 7:33 p.m.12 views

CVE-2026-27683

SAP BusinessObjects Business Intelligence application allows an authenticated attacker to inject malicious JavaScript payloads through crafted URLs. When a victim accesses the URL, the script executes in the user�s browser, potentially exposing restricted information. This results in a low impact...

4.1CVSS5.5AI score0.00185EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:18 p.m.12 views

CVE-2026-27681

Due to insufficient authorization checks in SAP Business Planning and Consolidation and SAP Business Warehouse, an authenticated user can execute crafted SQL statements to read, modify, and delete database data. This leads to a high impact on the confidentiality, integrity, and availability of th...

9.9CVSS6.2AI score0.00501EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/12 2:23 a.m.10 views

CVE-2026-40137

SAP TAFAPPLAUNCHER within Business Server Pages allows an unauthenticated attacker to craft malicious links that, when clicked by a victim, redirects them to attacker?controlled sites, potentially exposing or altering sensitive information in the victim�s browser. This results in a low impact on...

6.1CVSS5.8AI score0.00211EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/05/12 2:23 a.m.15 views

CVE-2026-40137

SAP CVE-2026-40137 affects the SAP TAF_APPLAUNCHER component of Business Server Pages. It describes a Cross-Site Scripting (XSS) issue where an unauthenticated attacker can craft malicious links that, when a victim clicks, redirect to attacker‑controlled sites and potentially expose or alter info...

6.1CVSS5.8AI score0.00211EPSS
Exploits0References2
nvd
nvd
added 2026/04/14 12:16 a.m.7 views

CVE-2026-24318

Due to an Insecure session management vulnerability in SAP Business Objects Business Intelligence Platform, an unauthenticated attacker could obtain valid session tokens and reuse them to gain unauthorized access to a victim�s session. If the application continues to accept previously issued toke...

4.2CVSS0.00167EPSS
Exploits0References2
cve
cve
added 2026/04/14 12:8 a.m.15 views

CVE-2026-34261

CVE-2026-34261 affects SAP Business Analytics and SAP Content Management. Root cause: missing authorization check enables an authenticated user to call certain remote function modules beyond their permissions. Impact: confidentiality is affected; no noted impact to integrity or availability. Expl...

6.5CVSS5.8AI score0.00213EPSS
Exploits0References2
euvd
euvd
added 2026/04/14 12:8 a.m.8 views

EUVD-2026-22154

Due to insufficient authorization checks in SAP Business Planning and Consolidation and SAP Business Warehouse, an authenticated user can execute crafted SQL statements to read, modify, and delete database data. This leads to a high impact on the confidentiality, integrity, and availability of th...

9.9CVSS5.9AI score0.00501EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/14 12:6 a.m.2 views

CVE-2026-24318

Due to an Insecure session management vulnerability in SAP Business Objects Business Intelligence Platform, an unauthenticated attacker could obtain valid session tokens and reuse them to gain unauthorized access to a victim�s session. If the application continues to accept previously issued toke...

4.2CVSS5.8AI score0.00167EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder