Vulnerabilities > CVE-2022-31591 - Unspecified vulnerability in SAP Businessobjects BW Publisher Service 420/430

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
sap

Summary

SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service

Vulnerable Configurations

Part Description Count
Application
Sap
2