Vulnerabilities > CVE-2018-2473 - Unspecified vulnerability in SAP Businessobjects Business Intelligence 4.1/4.2

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

sap

NVD

Published: 2018-11-13

Updated: 2020-08-24

Summary

SAP BusinessObjects Business Intelligence Platform Server, versions 4.1 and 4.2, when using Web Intelligence Richclient 3 tiers mode gateway allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Businessobjects Business Intelligence 4.2 SAP Businessobjects Business Intelligence 4.1	2

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832
https://launchpad.support.sap.com/#/notes/2657670
http://www.securityfocus.com/bid/105903