Vulnerabilities > CVE-2018-2446 - Unspecified vulnerability in SAP Businessobjects Business Intelligence 4.1/4.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Admin tools in SAP BusinessObjects Business Intelligence, versions 4.1, 4.2, allow an unauthenticated user to read sensitive information (server name), hence leading to an information disclosure.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
References
- http://www.securityfocus.com/bid/105089
- http://www.securityfocus.com/bid/105089
- https://launchpad.support.sap.com/#/notes/2633846
- https://launchpad.support.sap.com/#/notes/2633846
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499352742