CVE-2022-32246
CVE-2022-32246
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
12 jul 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impact on confidentiality and integrity of the application
Productos afectados
SAP SE · SAP BusinessObjects Business Intelligence Platform (Visual Difference Application)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →