SAP BusinessObjects Platform - versions 420, 430, Information design tool transmits sensitive information as cleartext in the binaries over the network. This could allow an unauthenticated attacker with deep knowledge to gain sensitive information such as user credentials and domain names, which may have a low impact on confidentiality and no impact on the integrity and availability of the system.
History

Tue, 28 Jan 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2023-05-09T00:55:04.357Z

Updated: 2025-01-28T18:57:29.954Z

Reserved: 2023-03-23T04:20:27.699Z

Link: CVE-2023-28764

cve-icon Vulnrichment

Updated: 2024-08-02T13:51:37.075Z

cve-icon NVD

Status : Modified

Published: 2023-05-09T01:15:08.863

Modified: 2024-11-21T07:55:57.583

Link: CVE-2023-28764

cve-icon Redhat

No data.