CVE-2020-6223
published 2020-04-14CVE-2020-6223: The open document of SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to modify certain error pages to include…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The open document of SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to modify certain error pages to include malicious content. This can misdirect a user who is tricked into accessing these error pages rendered by the application, leading to Content Spoofing.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | businessobjects_business_intelligence_platform | — | — |
| sap | businessobjects_business_intelligence_platform | — | — |
| sap_se | sap_business_objects_business_intelligence_platform | < 4.1 | 4.1 |
| sap_se | sap_business_objects_business_intelligence_platform | < 4.2 | 4.2 |