CVE-2023-42474
published 2023-10-10CVE-2023-42474: SAP BusinessObjects Web Intelligence - version 420, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
SAP BusinessObjects Web Intelligence - version 420, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link to a user that would possibly allow an attacker to retrieve the sensitive information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | businessobjects_web_intelligence | — | — |
| sap_se | sap_businessobjects_web_intelligence | — | — |