Due to the lack of validation, SAP BusinessObjects Business Intelligence Platform (Version Management System) - version 403, permits an unauthenticated user to read the code snippet through the UI, which leads to low impact on confidentiality and no impact on the application's availability or integrity.
References
Link | Resource |
---|---|
https://me.sap.com/notes/3352453 | Permissions Required |
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: sap
Published: 2023-09-12T00:55:46.173Z
Updated: 2023-09-12T00:55:46.173Z
Reserved: 2023-07-06T14:57:18.509Z
Link: CVE-2023-37489
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-12T02:15:12.160
Modified: 2023-09-14T02:07:38.067
Link: CVE-2023-37489
JSON object: View
Redhat Information
No data.
CWE