Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability.

CVSS 1 Total

Learn more
ScoreSeverityVersionVector String
5.4MEDIUM3.0CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Product Status

Learn more

Versions 1 Total

Default Status: unknown

affected

  • affected at < 4.2 

Updated:

This container includes required additional information provided by the CVE Program for this vulnerability.