QwikSec

Security Database

CVE

CWE

Training

CVE-2022-35169

Published: Jul 12, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

SAP BusinessObjects Business Intelligence Platform (LCM) - versions 420, 430, allows an attacker with an admin privilege to read and decrypt LCMBIAR file's password under certain conditions, enabling the attacker to modify the password or import the file into another system causing high impact on confidentiality but a limited impact on the availability and integrity of the application.

Vendor	Product	Versions
SAP SE	SAP BusinessObjects Business Intelligence Platform (LCM)	affected `420` affected `430`

Weaknesses (CWE)

References

https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

x_refsource_MISC

https://launchpad.support.sap.com/#/notes/3194361

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.