Unrated severityNVD Advisory· Published Apr 14, 2020· Updated Aug 4, 2024
CVE-2020-6195
CVE-2020-6195
Description
SAP Business Objects Business Intelligence Platform (CMC), version 4.1, 4.2, shows cleartext password in the response, leading to Information Disclosure. It involves social engineering in order to gain access to system and If password is known, it would give administrative rights to the attacker to read/modify delete the data and rights within the system.
Affected products
2- Range: = 4.1, 4.2
- SAP SE/SAP Business Objects Business Intelligence Platformv5Range: < 4.1
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.