Unauthorized Access to Sensitive Information in SAP BusinessObjects Business Intelligence Platform

Unauthorized Access to Sensitive Information in SAP BusinessObjects Business Intelligence Platform

CVE-2022-35296 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Under certain conditions, the application SAP BusinessObjects Business Intelligence Platform (Version Management System) exposes sensitive information to an actor over the network with high privileges that is not explicitly authorized to have access to that information, leading to a high impact on Confidentiality.

Learn more about our Network Penetration Testing.