PT-2020-18998 · Sap · Sap Businessobjects Mobile

Published

2020-03-10

Updated

2020-03-11

CVE-2020-6196

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SAP BusinessObjects Mobile (MobileBIService) version 4.2

Description The issue allows an attacker to generate multiple requests, which can block all the threads, resulting in a Denial of Service.

Recommendations For SAP BusinessObjects Mobile (MobileBIService) version 4.2, consider restricting access to the service to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-6196

Affected Products

Sap Businessobjects Mobile

PT-2020-18998 · Sap · Sap Businessobjects Mobile

CVE-2020-6196

Related Identifiers

Affected Products

References · 5