CVE-2019-0334 is a vulnerability in SAP Businessobjects Business Intelligence
Published on August 14, 2019
When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.
Products Associated with CVE-2019-0334
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-0334 are published in SAP Businessobjects Business Intelligence:
Affected Versions
SAP SE SAP BusinessObjects Business Intelligence Platform (BI Workspace):- Version < 4.1 is affected.
- Version < 4.2 is affected.
- Version < 4.3 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.