CVE-2022-22546
published 2022-02-09CVE-2022-22546: Due to improper HTML encoding in input control summary, an authorized attacker can execute XSS vulnerability in SAP Business Objects Web Intelligence (BI…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
Due to improper HTML encoding in input control summary, an authorized attacker can execute XSS vulnerability in SAP Business Objects Web Intelligence (BI Launchpad) - version 420.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | businessobjects_web_intelligence | — | — |
| sap_se | sap_business_objects_web_intelligence | — | — |