OS Command Execution vulnerability in SAP Business Objects Business Intelligence Platform (Adaptive Job Server)

Vulnerability

SAP Business Object's Adaptive Job Server, specifically versions 420 and 430, is susceptible to remote arbitrary command execution on Unix-based systems. This vulnerability is exploitable when program objects execution is enabled [1, 3]. The affected component is the Adaptive Job Server, and the vulnerability is present in SAP Cloud SDK for AI Python versions up to 3.3.0 [3].

Exploitation

An attacker must be an authenticated user with scheduling rights within the SAP Business Object environment. They can leverage this vulnerability through interfaces like the BI Launchpad, Central Management Console, or custom applications utilizing the public Java SDK. The exploitation requires program objects execution to be enabled [1, 3].

Impact

Successful exploitation allows an attacker to execute arbitrary commands on the underlying Unix operating system. This can lead to a compromise of the confidentiality, integrity, and availability of the affected system [1]. The scope of the compromise depends on the privileges of the authenticated user who triggers the vulnerability.

Mitigation

SAP has released patches for this vulnerability. The affected versions are 420 and 430. Specific patch details or release dates are not yet disclosed in the available references [1, 3]. Users are advised to update to a fixed version once available. No workarounds are mentioned in the provided references.