CVE-2024-41730

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
13/08/2024
Last modified:
12/09/2024

Description

In SAP BusinessObjects Business Intelligence<br /> Platform, if Single Signed On is enabled on Enterprise authentication, an<br /> unauthorized user can get a logon token using a REST endpoint. The attacker can<br /> fully compromise the system resulting in High impact on confidentiality,<br /> integrity and availability.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:sap:business_objects_business_intelligence_platform:enterprise_430:*:*:*:*:*:*:*
cpe:2.3:a:sap:business_objects_business_intelligence_platform:enterprise_440:*:*:*:*:*:*:*