Unrated severityNVD Advisory· Published Sep 15, 2021· Updated Aug 3, 2024
CVE-2021-33696
CVE-2021-33696
Description
SAP BusinessObjects Business Intelligence Platform (Crystal Report), versions - 420, 430, does not sufficiently encode user controlled inputs and therefore an authorized attacker can exploit a XSS vulnerability, leading to non-permanently deface or modify displayed content from a Web site.
Affected products
2- Range: = 420, 430
- SAP SE/SAP BusinessObjects Business Intelligence Platform (Crystal Report)v5Range: < 420
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.