In some situations, when a client cancels a query in SAP BusinessObjects Business Intelligence Platform (Web Intelligence), versions 4.2, 4.3, the attacker can then query and receive the whole data set instead of just what is part of their authorized security profile, resulting in Information Disclosure.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: sap
Published: 2019-08-14T13:47:36
Updated: 2024-08-04T17:44:16.500Z
Reserved: 2018-11-26T00:00:00
Link: CVE-2019-0333
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-08-14T14:15:15.607
Modified: 2024-11-21T04:16:42.040
Link: CVE-2019-0333
Redhat
No data.