CRITICAL🇵🇱 Wersja polska

CVE-2020-6294

CVSS 9.1v3.1pub. 2020-08-12upd. 2024-11-21

Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not perform any authentication checks for functionalities that require user identity.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • Opengroup Unix

    OS
    Opengroup
    wszystkie wersje
  • Sap Businessobjects Business Intelligence Platform

    APP
    Sap
    4.24.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2013-0625CRITICAL9.8⚠ KEVten sam produkt

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote attackers to bypass a...

CVE-2011-2462CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Windows and M...

CVE-2023-0022CRITICAL9.9ten sam produkt

SAP BusinessObjects Business Intelligence Analysis edition for OLAP allows an authenticated attacker to inject...

CVE-2023-0018CRITICAL10.0ten sam produkt

Due to improper input sanitization of user-controlled input in SAP BusinessObjects Business Intelligence Platf...

CVE-2020-26831CRITICAL9.6ten sam produkt

SAP BusinessObjects BI Platform (Crystal Report), versions - 4.1, 4.2, 4.3, does not sufficiently validate upl...