← volver
CVE-2021-40497

CVE-2021-40497

EPSS 0.8%
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
12 oct 2021Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation could lead to exposure of some system specific data like its version.
Productos afectados
SAP SE · SAP BusinessObjects Analysis, (edition for OLAP)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://launchpad.support.sap.com/#/notes/3098917https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983