CVE-2024-37179 Information

Description

SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a specially crafted request to the Web Intelligence Reporting Server to download any file from the machine hosting the service causing high impact on confidentiality of the application.

Reference

https://me.sap.com/notes/3478615 https://url.sap/sapsecuritypatchday https://url.sap/sapsecuritypatchday