Certain settings page(s) in SAP Business Objects Business Intelligence Platform (CMC), version 4.2, generates error messages that can give enterprise private-network related information which would otherwise be restricted leading to Information Disclosure.
References
Link | Resource |
---|---|
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=537788812 | Vendor Advisory |
https://launchpad.support.sap.com/#/notes/2695210 | Permissions Required Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-02-12 12:15
Updated : 2021-07-21 04:39
NVD link : CVE-2020-6189
Mitre link : CVE-2020-6189
JSON object : View
CWE
CWE-209
Generation of Error Message Containing Sensitive Information
Products Affected
sap
- businessobjects_business_intelligence_platform