Will Vandevanter

**Name of the Vulnerable Software and Affected Versions** NVIDIA Triton Inference Server versions (affected versions not specified) **Description** NVIDIA Triton Inference Server for Windows and Linux has an issue where a specially crafted input can cause a stack buffer overflow. Successful exploitation may lead to remote code execution, denial of service, information disclosure, and data tampering. The vulnerable component is susceptible to manipulation through crafted inputs. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA Triton Inference Server versions prior to 25.07 **Description** NVIDIA Triton Inference Server contains a flaw where an attacker can trigger a stack overflow through crafted HTTP requests. Successful exploitation could lead to remote code execution, denial of service, information disclosure, or data tampering. The vulnerability involves a stack-based buffer overflow. **Recommendations** Update NVIDIA Triton Inference Server to version 25.07 or later.

**Name of the Vulnerable Software and Affected Versions** SAP BusinessObjects Edge version 4.0 **Description** The issue allows remote attackers to write to arbitrary files via a full pathname. This is related to the File Repository Server (FRS) CORBA listener. **Recommendations** For SAP BusinessObjects Edge version 4.0, apply the fix as described in SAP Note 2018681 to resolve the issue. As a temporary workaround, consider restricting access to the FRS CORBA listener to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SAP BusinessObjects Edge version 4.0 **Description** The issue allows remote attackers to read arbitrary files via a full pathname. This is related to the File Repository Server (FRS) CORBA listener. **Recommendations** For SAP BusinessObjects Edge version 4.0, apply the fix as described in SAP Note 2018682 to resolve the issue. As a temporary workaround, consider restricting access to the FRS CORBA listener to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SAP BusinessObjects Edge version 4.0 **Description** The Auditing service in SAP BusinessObjects Edge allows remote attackers to obtain sensitive information by reading an audit event. **Recommendations** For SAP BusinessObjects Edge version 4.0, apply the fix as described in SAP Note 2011395 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SAP HANA version 1.00.73.00.389160 SAP HANA Developer Edition version 1.00.80.00.391861 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, affecting the SAP HANA and HANA Developer Edition. This can be done through the "ide/core/plugins/editor/templates/trace/hanaTraceDetailService.xsjs" or "xs/ide/editor/templates/trace/hanaTraceDetailService.xsjs" endpoints. **Recommendations** For SAP HANA version 1.00.73.00.389160, consider restricting access to the "ide/core/plugins/editor/templates/trace/hanaTraceDetailService.xsjs" and "xs/ide/editor/templates/trace/hanaTraceDetailService.xsjs" endpoints until a fix is available. For SAP HANA Developer Edition version 1.00.80.00.391861, consider restricting access to the "ide/core/plugins/editor/templates/trace/hanaTraceDetailService.xsjs" and "xs/ide/editor/templates/trace/hanaTraceDetailService.xsjs" endpoints until a fix is available.

**Name of the Vulnerable Software and Affected Versions** SAP BusinessObjects Edge version 4.0 **Description** The issue allows remote attackers to delete audit events from the auditee queue via a `clearData` CORBA operation. **Recommendations** For SAP BusinessObjects Edge version 4.0, apply the fix as described in SAP Note 2011396 to prevent remote attackers from deleting audit events.

**Name of the Vulnerable Software and Affected Versions** SAP BusinessObjects BI EDGE version 4.0 **Description** A cross-site scripting (XSS) issue exists in the Send to Inbox functionality, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For SAP BusinessObjects BI EDGE version 4.0, update the software to a version that includes a fix for this issue, as no specific workaround is provided.

**Name of the Vulnerable Software and Affected Versions** SAP HANA (affected versions not specified) **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the XS Administration Tools. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apache Axis2 (affected versions not specified) **Description** The issue is related to a default password set for the admin account in Apache Axis2, which is used in various products. This default password makes it easier for remote attackers to execute arbitrary code by uploading a crafted web service. No information is provided about the estimated number of potentially affected devices or real-world incidents. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.