CVE-2024-28166

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Aug 13, 2024
Updated: Sep 16, 2024
CWE ID 434

Summary

CVE-2024-28166 is a vulnerability affecting the SAP BusinessObjects Business Intelligence Platform. An authenticated attacker can exploit this weakness to upload malicious code over the network. This code may be executed by the application, resulting in a low-impact impact on the platform's integrity. This vulnerability poses a potential risk, and organizations using the impacted version of SAP BusinessObjects Business Intelligence Platform are encouraged to apply the necessary patches or updates to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SAP BusinessObjects Business Intelligence Platform

Affected Vendors

  • SAP SE