exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2019-0334

больше 6 лет назад

When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.

CVSS3: 5.4

EPSS: Низкий

GHSA-7q7c-hqqv-v8x5

больше 3 лет назад

When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.

CVSS3: 5.4

EPSS: Низкий

BDU:2020-04841

больше 6 лет назад

Уязвимость модуля BI Workspace платформы бизнес-аналитики SAP BusinessObjects Business Intelligence, позволяющая нарушителю повысить уровень привилегий путем перехвата сеанса или раскрыть защищаемую информацию

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-0334 When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.	CVSS3: 5.4	0% Низкий	больше 6 лет назад
GHSA-7q7c-hqqv-v8x5 When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.	CVSS3: 5.4	0% Низкий	больше 3 лет назад
BDU:2020-04841 Уязвимость модуля BI Workspace платформы бизнес-аналитики SAP BusinessObjects Business Intelligence, позволяющая нарушителю повысить уровень привилегий путем перехвата сеанса или раскрыть защищаемую информацию	CVSS3: 5.4	0% Низкий	больше 6 лет назад

Уязвимостей на страницу