CVE-2018-2432 is a vulnerability in SAP Businessobjects Business Intelligence
Published on July 10, 2018

SAP BusinessObjects Business Intelligence (BI Launchpad and Central Management Console) versions 4.10, 4.20 and 4.30 allow an attacker to include invalidated data in the HTTP response header sent to a Web user. Successful exploitation of this vulnerability may lead to advanced attacks, including: cross-site scripting and page hijacking.

NVD

Products Associated with CVE-2018-2432

Want to know whenever a new CVE is published for SAP Businessobjects Business Intelligence? stack.watch will email you.

SAP Businessobjects Business Intelligence

Affected Versions

SAP BusinessObjects Business Intelligence (BI Launchpad and Central Management Console):

Version = 4.10 is affected.
Version = 4.20 is affected.
Version = 4.30 is affected.

Exploit Probability

EPSS

0.40%

Percentile

60.31%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-2432 is a vulnerability in SAP Businessobjects Business IntelligencePublished on July 10, 2018

Products Associated with CVE-2018-2432

Affected Versions

Exploit Probability

CVE-2018-2432 is a vulnerability in SAP Businessobjects Business Intelligence
Published on July 10, 2018