CVE-2018-2397
published 2018-03-14CVE-2018-2397: In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user…
medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user controlled inputs which results in Cross-Site Scripting.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | businessobjects_business_intelligence_platform | — | — |
| sap | businessobjects_business_intelligence_platform | — | — |
| sap | businessobjects_business_intelligence_platform | — | — |
| sap | businessobjects_business_intelligence_platform | — | — |
| sap_se | sap_business_objects_business_intelligence_platform | — | — |
| sap_se | sap_business_objects_business_intelligence_platform | — | — |
| sap_se | sap_business_objects_business_intelligence_platform | — | — |
| sap_se | sap_business_objects_business_intelligence_platform | — | — |