CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-41730

In SAP BusinessObjects Business Intelligence Platform, if Single Signed On is enabled on Enterprise authentication, an unauthorized user can get a logon token using a REST endpoint. The attacker can fully compromise the system resulting in High impact on confidentiality, integrity and availability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 79.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://me.sap.com/notes/3479478
https://url.sap/sapsecuritypatchday

Products affected by CVE-2024-41730

Sap » Business Objects Business Intelligence Platform » Version: enterprise_430

cpe:2.3:a:sap:business_objects_business_intelligence_platform:enterprise_430
Sap » Business Objects Business Intelligence Platform » Version: enterprise_440

cpe:2.3:a:sap:business_objects_business_intelligence_platform:enterprise_440

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-41730

Products

Pricing

Contact Us