High Impact Auth Attack Retrieves OS Credentials
CVE-2022-39013 Published on October 11, 2022
Under certain conditions an authenticated attacker can get access to OS credentials. Getting access to OS credentials enables the attacker to modify system data and make the system unavailable leading to high impact on confidentiality and low impact on integrity and availability of the application.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2022-39013 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2022-39013
Want to know whenever a new CVE is published for SAP Business Objects Business Intelligence Platform? stack.watch will email you.
Affected Versions
SAP SE SAP BusinessObjects Business Intelligence Platform (Program Objects):- Version 420 is affected.
- Version 430 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.