CVE-2022-32246 Information

Description

SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420 430 allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of the application

Reference

https://launchpad.support.sap.com/#/notes/3203079 https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html