In some situations, when a client cancels a query in SAP BusinessObjects Business Intelligence Platform (Web Intelligence), versions 4.2, 4.3, the attacker can then query and receive the whole data set instead of just what is part of their authorized security profile, resulting in Information Disclosure.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2019-08-14T13:47:36

Updated: 2024-08-04T17:44:16.500Z

Reserved: 2018-11-26T00:00:00

Link: CVE-2019-0333

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-08-14T14:15:15.607

Modified: 2024-11-21T04:16:42.040

Link: CVE-2019-0333

cve-icon Redhat

No data.