Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap businessobjects edge 4.0 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2015-7730
SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1 R3 allow remote malicious users to cause a denial of service (out-of-bounds read and listener crash) via a crafted GIOP packet, aka SAP Security Note 2001108.
Sap Businessobjects 4.1
Sap Businessobjects Xi 3.1
Sap Businessobjects Xi R3
Sap Businessobjects Edge 4.0
5
CVSSv2
CVE-2015-2073
The File RepositoRy Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to read arbitrary files via a full pathname, aka SAP Note 2018682.
Sap Businessobjects Edge 4.0
5
CVSSv2
CVE-2015-2076
The Auditing service in SAP BusinessObjects Edge 4.0 allows remote malicious users to obtain sensitive information by reading an audit event, aka SAP Note 2011395.
Sap Businessobjects Edge 4.0
5
CVSSv2
CVE-2015-2075
SAP BusinessObjects Edge 4.0 allows remote malicious users to delete audit events from the auditee queue via a clearData CORBA operation, aka SAP Note 2011396.
Sap Businessobjects Edge 4.0
5
CVSSv2
CVE-2015-2074
The File Repository Server (FRS) CORBA listener in SAP BussinessObjects Edge 4.0 allows remote malicious users to write to arbitrary files via a full pathname, aka SAP Note 2018681.
Sap Businessobjects Edge 4.0
3.5
CVSSv2
CVE-2014-8311
SAP BusinessObjects Edge 4.0 allows remote malicious users to obtain sensitive information via an InfoStore query to a CORBA listener.
Sap Businessobjects 4.0
7.1
CVSSv2
CVE-2014-8310
The CMS CORBA listener in SAP BusinessObjects BI Edge 4.0 allows remote malicious users to cause a denial of service (server shutdown) via crafted OSCAFactory::Session ORB message.
Sap Businessobjects 4.0
4.3
CVSSv2
CVE-2014-8308
Cross-site scripting (XSS) vulnerability in the Send to Inbox functionality in SAP BusinessObjects BI EDGE 4.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sap Businessobjects 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started