CVE-2020-6294
8.5HIGH
Key Information:
- Vendor
- SAP
- Vendor
- CVE Published:
- 12 August 2020
Summary
Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not perform any authentication checks for functionalities that require user identity.
Affected Version(s)
SAP Business Objects Business Intelligence Platform < 4.2 < 4.2
SAP Business Objects Business Intelligence Platform < 4.3 < 4.3
References
CVSS V3.1
Score:
8.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved