CVE-2019-0352

Published: Sep 10, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In SAP Business Objects Business Intelligence Platform, before versions 4.1, 4.2 and 4.3, some dynamic pages (like jsp) are cached, which leads to an attacker can see the sensitive information via cache and can open the dynamic pages even after logout.

Vendor	Product	Versions
SAP SE	SAP BusinessObjects Business Intelligence Platform (CMC)	affected `< 4.1` affected `< 4.2` affected `< 4.3`

References

https://launchpad.support.sap.com/#/notes/2735924

x_refsource_MISC

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=525962506

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-0352

Description

Affected Products

References