Email Spoofing Vulnerability in SAP Business Objects BI Platform
CVE-2026-44755

4.3MEDIUM

What is CVE-2026-44755?

The SAP Business Objects Business Intelligence Platform is susceptible to an email spoofing vulnerability caused by insufficient validation of email sending parameters provided by authenticated users. This flaw allows an attacker to manipulate email headers, potentially leading to deceptive communications. While it poses no risk to the integrity, confidentiality, or availability of the application, organizations using this product should promptly apply updates to mitigate any potential exploits.

Affected Version(s)

SAP Business Objects Business Intelligence Platform ENTERPRISE 430

SAP Business Objects Business Intelligence Platform 2025

SAP Business Objects Business Intelligence Platform 2027

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.