CVE-2018-2479

SAP BusinessObjects Business Intelligence Platform (BIWorkspace), versions 4.1 and 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.

Link	Resource
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832	Vendor Advisory
https://launchpad.support.sap.com/#/notes/2676094	Permissions Required Vendor Advisory
http://www.securityfocus.com/bid/105902	Third Party Advisory VDB Entry

Configuration 1

cpe:2.3:a:sap:businessobjects_bi_platform:4.2:*:*:*:*:*:*:* cpe:2.3:a:sap:businessobjects_bi_platform:4.1:*:*:*:*:*:*:*

---

Published : 2018-11-13 08:29

Updated : 2018-11-24 02:47

---

NVD link : CVE-2018-2479

Mitre link : CVE-2018-2479

No products.

CWE-79