📦 Businessobjects Business Intelligence Platform
by Sap
🔍 What is Businessobjects Business Intelligence Platform?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability in SAP BusinessObjects BI Platform allows attackers with basic privileges to upload malicious XML entities during crystal report generation, leading to file disclosure, directory tr...
This vulnerability in SAP BusinessObjects Business Intelligence Platform allows authenticated high-privilege attackers to insert malicious URLs that redirect victims to attacker-controlled domains, po...
CVE-2026-0485 is a denial-of-service vulnerability in SAP BusinessObjects BI Platform that allows unauthenticated attackers to crash and restart the Content Management Server (CMS) through specially c...
CVE-2026-0490 is an authentication bypass vulnerability in SAP BusinessObjects BI Platform that allows unauthenticated attackers to send crafted network requests to a trusted endpoint, disrupting auth...
This vulnerability in SAP BusinessObjects Business Intelligence platform allows administrators to generate or retrieve a secret passphrase that enables impersonation of any user. This compromises both...
SAP BusinessObjects Business Intelligence Platform has an information disclosure vulnerability that allows unauthenticated attackers to hijack user sessions over the network without user interaction. ...
SAP Business Objects Business Intelligence Platform contains a stored cross-site scripting (XSS) vulnerability in the Opendocument URL parameter. Attackers can inject malicious scripts that execute wh...
This vulnerability allows authenticated attackers to bypass file type validation in SAP BusinessObjects Business Intelligence Platform's Web Intelligence HTML interface. By intercepting and modifying ...
This vulnerability allows authenticated admin users in SAP BusinessObjects Business Intelligence Platform (CMC) to upload malicious code that gets executed by the application. Successful exploitation ...
This vulnerability in SAP BusinessObjects Business Intelligence platform allows authenticated attackers to access sensitive information that should be restricted. It affects versions 420 and 430, pote...
CVE-2022-35228 is a cross-site request forgery (CSRF) vulnerability in SAP BusinessObjects Central Management Console (CMC) that allows an unauthenticated attacker to retrieve token information when c...
CVE-2022-27667 is an information disclosure vulnerability in SAP BusinessObjects Business Intelligence platform's Client Management Console (CMC). It allows attackers to access restricted information ...
This vulnerability allows authenticated users with standard privileges in SAP BusinessObjects Business Intelligence Platform to execute a specific query in AdminTools that crashes the Content Manageme...
This vulnerability allows attackers with local system access to modify files in SAP BusinessObjects Business Intelligence Platform due to insecure file permissions, potentially disrupting operations o...
SAP BusinessObjects Web Intelligence contains an insecure deprecated endpoint vulnerable to cross-site scripting (XSS). Attackers can inject malicious URLs that execute in victims' browsers, potential...
This vulnerability allows authenticated users with restricted access in SAP BusinessObjects Business Intelligence Platform to inject malicious JavaScript code. The injected code can read sensitive ser...
CVE-2024-32732 is an information disclosure vulnerability in SAP BusinessObjects Business Intelligence platform that allows attackers to access restricted information under certain conditions. This af...