VYPR
Unrated severityNVD Advisory· Published Jan 14, 2025· Updated Jan 14, 2025

Multiple vulnerabilities in SAP BusinessObjects Business Intelligence Platform

CVE-2025-0060

Description

SAP BusinessObjects Business Intelligence Platform allows an authenticated user with restricted access to inject malicious JS code which can read sensitive information from the server and send it to the attacker. The attacker could further use this information to impersonate as a high privileged user causing high impact on confidentiality and integrity of the application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.