Password Change rate limit bypass in SAP BusinessObjects Business Intelligence Platform
CVE-2023-36917
7.5HIGH
Key Information:
- Vendor
- SAP
- Vendor
- CVE Published:
- 11 July 2023
Summary
The SAP BusinessObjects Business Intelligence Platform versions 420 and 430 are susceptible to a session hijack vulnerability. This allows an attacker, who has gained unauthorized access to a user's session, to circumvent the victim’s old password using brute force tactics. The weakness arises from an unrestricted rate limit in the password change functionality. While this vulnerability does not compromise the integrity or availability of the system, it poses a significant risk of account takeover, potentially granting the attacker full access to the victim's account.
Affected Version(s)
SAP BusinessObjects Business Intelligence Platform 4.20
SAP BusinessObjects Business Intelligence Platform 430
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved