CVE-2019-0303 is a vulnerability in SAP Businessobjects
Published on June 14, 2019

SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.

NVD

Products Associated with CVE-2019-0303

Want to know whenever a new CVE is published for SAP Businessobjects? stack.watch will email you.

SAP Businessobjects

Affected Versions

SAP SE SAP BusinessObjects Business Intelligence Platform (Administration Console):

Version < 4.2 is affected.
Version < 4.3 is affected.

Exploit Probability

EPSS

0.23%

Percentile

45.55%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-0303 is a vulnerability in SAP BusinessobjectsPublished on June 14, 2019

Products Associated with CVE-2019-0303

Affected Versions

Exploit Probability

CVE-2019-0303 is a vulnerability in SAP Businessobjects
Published on June 14, 2019