CVE-2018-2471

3 documents3 sources

Severity

7.5HIGH

EPSS

0.3%

top 42.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP SAP Businessobjects Business Intelligence Platform SAP Businessobjects Business Intelligence Platform

Timeline

PublishedOct 9

Latest updateMay 13

Description

Under certain conditions SAP BusinessObjects Business Intelligence Platform 4.10 and 4.20 allows an attacker to access information which would otherwise be restricted.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDsap/businessobjects_business_intelligence_platform4.10, 4.20+1

▶CVEListV5sap/sap_businessobjects_business_intelligence_platform4.10, 4.20+1

🔴Vulnerability Details

GHSA

GHSA-p237-w4qx-jp56: Under certain conditions SAP BusinessObjects Business Intelligence Platform 4↗2022-05-13

▶

CVEList

CVE-2018-2471: Under certain conditions SAP BusinessObjects Business Intelligence Platform 4↗2018-10-09

▶