CVE-2021-40497

Summary

SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation could lead to exposure of some system specific data like its version.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP BusinessObjects Analysis, (edition for OLAP)< 420affected
SAP SESAP BusinessObjects Analysis, (edition for OLAP)< 430affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References