SAP Business Objects Business Intelligence Platform (Crystal Reports), versions- 4.1, 4.2, allows an attacker with basic authorization to inject code that can be executed by the application and thus allowing the attacker to control the behaviour of the application, leading to Remote Code Execution. Although the mode of attack is only Local, multiple applications can be impacted as a result of the vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: sap
Published: 2020-03-10T20:20:44
Updated: 2024-08-04T08:55:21.925Z
Reserved: 2020-01-08T00:00:00
Link: CVE-2020-6208
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-03-10T21:15:14.903
Modified: 2024-11-21T05:35:18.147
Link: CVE-2020-6208
Redhat
No data.