CVE-2022-32245

CVE-2022-32245

Vendor Sap Se
Product SAP BusinessObjects Business Intelligence Platform (Open Document)
Weakness CWE-319 · Cleartext transmission
Published August 9, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

SAP BusinessObjects Business Intelligence Platform (Open Document) - versions 420, 430, allows an unauthenticated attacker to retrieve sensitive information plain text over the network. On successful exploitation, the attacker can view any data available for a business user and put load on the application by an automated attack. Thus, completely compromising confidentiality but causing a limited impact on the availability of the application.

Key dates

02Disclosure timeline

August 9, 2022 CVE published
August 3, 2024 Record updated