Vulnerability Details CVE-2026-24324
SAP BusinessObjects Business Intelligence Platform (AdminTools) allows an authenticated attacker with user privileges to execute a specific query in AdminTools that could cause the Content Management Server (CMS) to crash, rendering the CMS partially or completely unavailable and resulting in the denial of service of the Content Management Server (CMS). Successful exploitation impacts system availability, while confidentiality and integrity remain unaffected.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 13.2%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2026-24324
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2025
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:2027
-
cpe:2.3:a:sap:businessobjects_business_intelligence_platform:430