CNNVD-202512-1492 Information
CNNVD ID
CNNVD-202512-1492
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
SAP BusinessObjects Business Intelligence Platform是德国思爱普(SAP)公司的一款完备的商务分析平台。该平台集市场领先的 SAP 数据整合产品、数据管理产品和商务智能 (BI) 产品于一身,可消除系统集成难题,快速、轻松地部署高性能的商务分析软件。 SAP BusinessObjects Business Intelligence Platform存在安全漏洞,该漏洞源于URL参数控制不当,可能导致服务器获取攻击者提供的URL。
Description (English)
SAP BusinessObjects Business Information Platform is a well-developed business analysis platform of SAP. The platform brings together the market-leading SAP data integration products, data management products and business intelligence (BI) products, which remove system integration challenges and rapidly and easily deploy high-performance business analysis software. The SAP BusinessObjects Business Inteligence Platform has a security loophole, which stems from inadequate control of the URL parameters and may result in the server acquiring URLs from the attackers.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
思爱普
Published
2025-12-09
Last Modified
2026-02-24
References
https://me.sap.com/notes/3651390 https://url.sap/sapsecuritypatchday
Patch
https://url.sap/sapsecuritypatchday
Share on: