CVE-2022-22541
First published: Tue Apr 12 2022(Updated: )
SAP BusinessObjects Business Intelligence Platform - versions 420, 430, may allow legitimate users to access information they shouldn't see through relational or OLAP connections. The main impact is the disclosure of company data to people that shouldn't or don't need to have access.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP BusinessObjects BI Platform | =420 | |
| SAP BusinessObjects BI Platform | =430 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-22541.
What is the title of the vulnerability?
The title of the vulnerability is 'SAP BusinessObjects Business Intelligence Platform - versions 420, 430 may allow legitimate users to ...'.
What is the impact of the vulnerability?
The main impact of the vulnerability is the disclosure of company data to people that shouldn't or don't need to have access.
Which versions of SAP BusinessObjects Business Intelligence Platform are affected?
Versions 420 and 430 of SAP BusinessObjects Business Intelligence Platform are affected.
What is the severity of the vulnerability?
The severity of the vulnerability is medium with a severity value of 6.5.
How can I fix the vulnerability?
To fix the vulnerability, it is recommended to apply the necessary patches and updates provided by SAP.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sap
- canonical/sap businessobjects bi platform
- version/sap businessobjects bi platform/420
- version/sap businessobjects bi platform/430