cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-39014,https://securityvulnerability.io/vulnerability/CVE-2022-39014,Unrestricted Access to Sensitive Parameters in SAP BusinessObjects Business Intelligence Platform,SAP BusinessObjects Business Intelligence Platform Central Management Console (CMC) - version 430 contains a vulnerability that allows attackers to gain access to sensitive parameters that should typically remain encrypted. This unauthorized access can lead to exposure of crucial data that compromises the confidentiality and security of the platform. Organizations utilizing this version of SAP BusinessObjects should take immediate action to mitigate this risk.,SAP,SAP Businessobjects Business Intelligence Platform (cmc),5.3,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2022-09-13T15:43:47.000Z,0
CVE-2019-0352,https://securityvulnerability.io/vulnerability/CVE-2019-0352,Information Disclosure Vulnerability in SAP Business Objects Business Intelligence Platform,"An information disclosure vulnerability exists in SAP Business Objects Business Intelligence Platform prior to version 4.1, 4.2, and 4.3. This vulnerability allows an attacker to access sensitive information through cached dynamic pages, including JSP files. Even after a user has logged out, these cached pages may reveal sensitive information, presenting a risk to the confidentiality of user data. Organizations using the affected versions should apply the necessary updates to mitigate this risk.",SAP,SAP Businessobjects Business Intelligence Platform (cmc),7.5,HIGH,0.0017800000496208668,false,,false,false,false,,,false,false,,2019-09-10T16:03:38.000Z,0
CVE-2019-0335,https://securityvulnerability.io/vulnerability/CVE-2019-0335,Stored Cross-Site Scripting Vulnerability in SAP BusinessObjects BI Platform,"SAP BusinessObjects Business Intelligence Platform versions 4.1, 4.2, and 4.3 are vulnerable due to a flaw that allows attackers to inject a malicious payload into the description field of user accounts. This payload is executed when a user hovers over the description field, triggering a Stored Cross-Site Scripting (XSS) attack. This vulnerability can potentially compromise user accounts and sensitive data, emphasizing the need for immediate mitigation measures.",SAP,SAP Businessobjects Business Intelligence Platform (cmc),6.1,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2019-08-14T13:44:29.000Z,0
CVE-2019-0268,https://securityvulnerability.io/vulnerability/CVE-2019-0268,XML Validation Flaw in SAP BusinessObjects Business Intelligence Platform,"An XML validation vulnerability exists in the SAP BusinessObjects Business Intelligence Platform's CMC Module, particularly in versions 4.10, 4.20, and 4.30. This flaw enables attackers to submit potentially malicious XML documents from untrusted sources, which the system fails to validate adequately. Such vulnerabilities can lead to security risks, including unauthorized access to confidential data or disruption of service. It's crucial for users of these affected versions to implement necessary security measures to mitigate this risk.",SAP,SAP Businessobjects Business Intelligence Platform (cmc Module),8.1,HIGH,0.003759999992325902,false,,false,false,false,,,false,false,,2019-03-12T22:00:00.000Z,0