admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-30 18:04:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Updated product / version / description.

Browse Source
This commit is contained in:
CVE Team 2018-09-04 08:08:53 -04:00
parent aba368dca7
commit 34bc2b9fd9
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
1 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
2018/2xxx/CVE-2018-2448.json
View File

@ -11,16 +11,20 @@
"product" : {
"product_data" : [
{
"product_name" : "SAP BusinessObjects Business Intelligence Platform",
"product_name" : "SAP SRM-MDM CATALOG",
"version" : {
"version_data" : [
{
"version_name" : "",
"version_value" : "4.1"
"version_value" : "3.0"
},
{
"version_name" : "",
"version_value" : "4.2"
"version_value" : "7.01"
},
{
"version_name" : "",
"version_value" : "7.02"
}
]
}
@ -39,7 +43,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "Admin tools in SAP BusinessObjects Business Intelligence Platform, versions 4.1 and 4.2, allows an unauthenticated user to read sensitive information (server name), hence leading to an information disclosure."
"value" : "Under certain conditions SAP SRM-MDM (CATALOG versions 3.0, 7.01, 7.02) utilities functionality allows an attacker to access information of user existence which would otherwise be restricted."
}
]
},