CVE-2021-33679 is a vulnerability in SAP Businessobjects Business Intelligence Platform
Published on September 14, 2021
The SAP BusinessObjects BI Platform version - 420 allows an attacker, who has basic access to the application, to inject a malicious script while creating a new module document, file, or folder. When another user visits that page, the stored malicious script will execute in their session, hence allowing the attacker to compromise their confidentiality and integrity.
Products Associated with CVE-2021-33679
Want to know whenever a new CVE is published for SAP Businessobjects Business Intelligence Platform? stack.watch will email you.
Affected Versions
SAP SE SAP BusinessObjects Business Intelligence Platform (BI Workspace) Version < 420 is affected by CVE-2021-33679Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.