CVE-2020-6247

Name of the Vulnerable Software and Affected Versions SAP Business Objects Business Intelligence Platform version 4.2

Description The issue allows an unauthenticated attacker to prevent legitimate users from accessing a service by crashing or flooding the Central Management Server, thereby impacting system availability. This can be achieved by using a specially crafted request.

Recommendations For SAP Business Objects Business Intelligence Platform version 4.2, consider restricting access to the Central Management Server to prevent unauthenticated attackers from crashing or flooding the system, thereby minimizing the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.