CVE-2019-0287

Under certain conditions SAP BusinessObjects Business Intelligence platform (Central Management Server), versions 4.2 and 4.3, allows an attacker to access information which would otherwise be restricted.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.6 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
sapCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
VendorProductVersion
sapbusinessobjects
4.2
sapbusinessobjects
4.3
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/108316
https://launchpad.support.sap.com/#/notes/2737278
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=520259032
http://www.securityfocus.com/bid/108316
https://launchpad.support.sap.com/#/notes/2737278
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=520259032