CVE-2019-0332

Summary

SAP BusinessObjects Business Intelligence Platform (Info View), versions 4.1, 4.2, 4.3, allows an attacker to give some payload for keyword in the search and it will be executed while search performs its action, resulting in Cross-Site Scripting (XSS) vulnerability.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP BusinessObjects Business Intelligence Platform (Info View)< 4.1affected
SAP SESAP BusinessObjects Business Intelligence Platform (Info View)< 4.2affected
SAP SESAP BusinessObjects Business Intelligence Platform (Info View)< 4.3affected

Weaknesses

  • Cross-Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References