CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-3980

Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 does not limit the number of CUIDs that may be requested, which allows remote authenticated users to cause a denial of service via a large numCuids value in a GenerateCuids SOAPAction to the dswsbobje/services/biplatform URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.4%

CVSS Severity

CVSS v2 Score 4.0

References

http://spl0it.org/files/talks/source_barcelona10/Hacking%20SAP%20BusinessObjects.pdf
http://spl0it.org/files/talks/source_barcelona10/Hacking%20SAP%20BusinessObjects.pdf

Products affected by CVE-2010-3980

Sap » Businessobjects » Version: 3.2

cpe:2.3:a:sap:businessobjects:3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3980

Products

Pricing

Contact Us