Improper Control of Resource Identifiers in SAP Business Objects Business Intelligence Platform 4.2

Improper Control of Resource Identifiers in SAP Business Objects Business Intelligence Platform 4.2

CVE-2020-6245 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

SAP Business Objects Business Intelligence Platform, version 4.2, allows an attacker with access to local instance, to inject file or code that can be executed by the application due to Improper Control of Resource Identifiers.

Learn more about our Web Application Penetration Testing UK.