CVE-2018-2427
N/A
N/A
Summary
SAP BusinessObjects Business Intelligence Suite, versions 4.10 and 4.20, and SAP Crystal Reports (version for Visual Studio .NET, Version 2010) allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behaviour of the application.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP | SAP BusinessObjects Business Intelligence Suite | = 4.10 | affected |
| SAP | SAP BusinessObjects Business Intelligence Suite | = 4.20 | affected |
| SAP | SAP Crystal Reports | = version for Visual Studio .NET, Version 2010 | affected |
Weaknesses
- Code Injection
ADP Enrichment
CVE Program Container
Additional References
- https://launchpad.support.sap.com/#/notes/2620738
- http://www.securityfocus.com/bid/104715
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000
References
- https://launchpad.support.sap.com/#/notes/2620738
- http://www.securityfocus.com/bid/104715
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.