Unrated severityNVD Advisory· Published Apr 14, 2020· Updated Aug 4, 2024
CVE-2020-6219
CVE-2020-6219
Description
SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer), versions 4.1, 4.2, and Crystal Reports for VS version 2010, allows an attacker with basic authorization to perform deserialization attack in the application, leading to service interruptions and denial of service and unauthorized execution of arbitrary commands, leading to Deserialization of Untrusted Data.
Affected products
4- Range: =2010
- Range: 4.1, 4.2
- SAP SE/Crystal Reports for VSv5Range: < 2010
- SAP SE/SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer)v5Range: < 4.1
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.