CVE-2021-33679

More information about this CVE will likely be available in a few days.

Description

The SAP BusinessObjects BI Platform version - 420 allows an attacker, who has basic access to the application, to inject a malicious script while creating a new module document, file, or folder. When another user visits that page, the stored malicious script will execute in their session, hence allowing the attacker to compromise their confidentiality and integrity.

Related CPE's

Could not find any relations

References

https://launchpad.support.sap.com/#/notes/3055180

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=585106405

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io