CVE-2021-21447 is a vulnerability in SAP Businessobjects Business Intelligence
Published on January 12, 2021

SAP BusinessObjects Business Intelligence platform, versions 410, 420, allows an authenticated attacker to inject malicious JavaScript payload into the custom value input field of an Input Control, which can be executed by User who views the relevant application content, which leads to Stored Cross-Site Scripting.

NVD

Products Associated with CVE-2021-21447

Want to know whenever a new CVE is published for SAP Businessobjects Business Intelligence? stack.watch will email you.

SAP Businessobjects Business Intelligence

Affected Versions

SAP SE SAP BusinessObjects Business Intelligence platform (Web Intelligence HTML interface):

Version < 410 is affected.
Version < 420 is affected.

Exploit Probability

EPSS

0.26%

Percentile

49.27%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-21447 is a vulnerability in SAP Businessobjects Business IntelligencePublished on January 12, 2021

Products Associated with CVE-2021-21447

Affected Versions

Exploit Probability

CVE-2021-21447 is a vulnerability in SAP Businessobjects Business Intelligence
Published on January 12, 2021