PT-2019-11231 · Sap · Sap Businessobjects Business Intelligence Platform
Publicado
2019-08-14
·
Atualizado
2020-08-24
·
CVE-2019-0348
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
SAP BusinessObjects Business Intelligence Platform (Web Intelligence) versions 4.1, 4.2
Description:
The issue allows access to a database with an unencrypted connection, despite the quality of protection being set to encrypted.
Recommendations:
For versions 4.1 and 4.2, consider configuring the database connection to enforce encrypted connections to prevent unauthorized access.
Correção
Cleartext Transmission of Sensitive Information
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Sap Businessobjects Business Intelligence Platform