Caching Vulnerability in SAP Business Objects Business Intelligence Platform

Caching Vulnerability in SAP Business Objects Business Intelligence Platform

CVE-2019-0352 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In SAP Business Objects Business Intelligence Platform, before versions 4.1, 4.2 and 4.3, some dynamic pages (like jsp) are cached, which leads to an attacker can see the sensitive information via cache and can open the dynamic pages even after logout.

Learn more about our Web Application Penetration Testing UK.