How severe is CVE-2024-28165?

CVE-2024-28165 has a CVSS v3 score of 8.1 (HIGH).

CVE-2024-28165

Name: businessobjects_business_intelligence_platform
Author: sap

8.1HIGH

SAP Business Objects Business Intelligence Platform is vulnerable to stored XSS allowing an attacker to manipulate a parameter in the Opendocument URL which could lead to high impact on Confidentiali

发布于: 5/14/2024更新于: 10/23/2025

描述

SAP Business Objects Business Intelligence Platform is vulnerable to stored XSS allowing an attacker to manipulate a parameter in the Opendocument URL which could lead to high impact on Confidentiality and Integrity of the application

AI分析AI驱动

受影响产品

sapbusinessobjects_business_intelligence_platform

430

sapbusinessobjects_business_intelligence_platform

440

参考资料

https://me.sap.com/notes/3431794
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html
Patch
https://me.sap.com/notes/3431794
Permissions Required
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html
Patch