Unrated severityNVD Advisory· Published Feb 10, 2026· Updated Feb 10, 2026

Denial of service (DOS) vulnerability in SAP BusinessObjects BI Platform

CVE-2026-0485

Description

SAP BusinessObjects BI Platform allows an unauthenticated attacker to send specially crafted requests that could cause the Content Management Server (CMS) to crash and automatically restart. By repeatedly submitting these requests, the attacker could induce a persistent service disruption, rendering the CMS completely unavailable. Successful exploitation results in a high impact on availability, while confidentiality and integrity remain unaffected.

Affected products

SAP/Businessobjectsllm-fuzzy
SAP_SE/SAP BusinessObjects BI Platformv5
Range: ENTERPRISE 430

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

me.sap.com/notes/3678282mitre
url.sap/sapsecuritypatchdaymitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000