CVE-2022-39800 Information

Description

SAP BusinessObjects BI LaunchPad - versions 420 430 is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the user inputs while interacting on the network. On successful exploitation an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.

Reference

https://launchpad.support.sap.com/#/notes/3211161 https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html