CVE-2022-31598

Name of the Vulnerable Software and Affected Versions SAP Business Objects version 420

Description The issue is related to insufficient input validation, allowing an authenticated attacker to submit a malicious request through an allowed operation. This can result in an attacker being able to view or modify information, causing a limited impact on the confidentiality and integrity of the application. The vulnerability is also associated with inadequate data authentication checks, which can enable a remote attacker to gain unauthorized access to protected information.

Recommendations For SAP Business Objects version 420, consider implementing additional input validation checks to prevent malicious requests. As a temporary workaround, restrict access to sensitive operations and data to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.