CVE-2020-6242
Description
SAP Business Objects Business Intelligence Platform (Live Data Connect), versions 1.0, 2.0, 2.1, 2.2, 2.3, allows an attacker to logon on the Central Management Console without password in case of the BIPRWS application server was not protected with some specific certificate, leading to Missing Authentication Check.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.229
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-6242 are affected in SAP Business Objects Business Intelligence Platform 1.0 | Windows |
| Vulnerabilities CVE-2020-6242 are affected in SAP Business Objects Business Intelligence Platform 2.0 | Windows |
| Vulnerabilities CVE-2020-6242 are affected in SAP BusinessObjects Business Intelligence Platform (Web Intelligence) 1.0 | Windows |
| Vulnerabilities CVE-2020-6242 are affected in SAP BusinessObjects Business Intelligence Platform (Web Intelligence) 2.0 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234