VYPR
Unrated severityNVD Advisory· Published Aug 8, 2023· Updated Aug 2, 2024

Binary hijack in SAP BusinessObjects Business Intelligence (Installer)

CVE-2023-37490

Description

SAP Business Objects Installer - versions 420, 430, allows an authenticated attacker within the network to overwrite an executable file created in a temporary directory during the installation process. On replacing this executable with a malicious file, an attacker can completely compromise the confidentiality, integrity, and availability of the system

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.