Vulnerabilities > CVE-2018-2473 - Unspecified vulnerability in SAP Businessobjects Business Intelligence 4.1/4.2

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

sap

NVD

Published: 2018-11-13

Updated: 2020-08-24

Summary

SAP BusinessObjects Business Intelligence Platform Server, versions 4.1 and 4.2, when using Web Intelligence Richclient 3 tiers mode gateway allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Businessobjects Business Intelligence 4.1 SAP Businessobjects Business Intelligence 4.2	2

References

http://www.securityfocus.com/bid/105903
https://launchpad.support.sap.com/#/notes/2657670
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832