SAP BusinessObjects BI Platform: Email Spoofing via Unvalidated Send Params: CVE-2026-44755 June 2026

Email Spoofing vulnerability in SAP Business Objects Business Intelligence Platform
SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and availability of the application.

Vulnerability Analysis

CVE-2026-44755 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

LOW

Availability Impact:

NONE

Weakness Type

Origin Validation Error

The software does not properly verify that the source of data or communication is valid.

Products Associated with CVE-2026-44755

Want to know whenever a new CVE is published for SAP Business Objects Business Intelligence Platform? stack.watch will email you.

SAP BusinessObjects BI Platform: Email Spoofing via Unvalidated Send Params
CVE-2026-44755 Published on June 9, 2026

Vulnerability Analysis

Weakness Type

Origin Validation Error

Products Associated with CVE-2026-44755

Affected Versions

SAP BusinessObjects BI Platform: Email Spoofing via Unvalidated Send ParamsCVE-2026-44755 Published on June 9, 2026

Vulnerability Analysis

Weakness Type

Origin Validation Error

Products Associated with CVE-2026-44755

Affected Versions

SAP BusinessObjects BI Platform: Email Spoofing via Unvalidated Send Params
CVE-2026-44755 Published on June 9, 2026