admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-28166.md

19 lines
962 B
Markdown
Raw Normal View History

Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00
### [CVE-2024-28166](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28166)
![](https://img.shields.io/static/v1?label=Product&message=SAP%20BusinessObjects%20Business%20Intelligence%20Platform&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2025%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=ENTERPRISE%20430%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-434%3A%20Unrestricted%20Upload%20of%20File%20with%20Dangerous%20Type&color=brightgreen)
### Description
SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker to upload malicious code over the network, that could be executed by the application. On successful exploitation, the attacker can cause a low impact on the Integrity of the application.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds
Reference in New Issue Copy Permalink