Vulnerability Details CVE-2019-0395
SAP BusinessObjects Business Intelligence Platform (Fiori BI Launchpad), before version 4.2, allows execution of JavaScript in a text module in Fiori BI Launchpad, leading to Stored Cross Site Scripting vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.8%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2019-0395
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:-
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:1.0
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2.0
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2.1
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2.2
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2.3
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:4.0
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:4.00
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:4.1