SAP Business Objects Business Intelligence Platform, version 4.2, allows an attacker with access to local instance, to inject file or code that can be executed by the application due to Improper Control of Resource Identifiers.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2828558 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: sap
Published: 2020-05-12T17:49:07
Updated: 2020-05-12T17:49:07
Reserved: 2020-01-08T00:00:00
Link: CVE-2020-6245
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-05-12T18:15:14.053
Modified: 2020-05-14T19:03:53.240
Link: CVE-2020-6245
JSON object: View
Redhat Information
No data.