Primary

Context

SAP BusinessObjects Business Intelligence Platform Insufficient CSRF Protection Vulnerability

Vulnerability

A vulnerability exists in SAP BusinessObjects Business Intelligence Platform due to inadequate Cross-Site Request Forgery (CSRF) protection. This flaw allows an authenticated user to be manipulated by an attacker into sending unintended requests to the web server. While this vulnerability has a low impact on the application's integrity and availability, it does not affect data confidentiality.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of the user, potentially disrupting application availability or integrity.

Remediation

Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform.

Added: May 12, 2026, 3:34 AM

Updated: May 12, 2026, 3:34 AM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

1.3

exploitability

5.8

remediation

0.0

relevance

8.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

1.3

exploitability

5.8

remediation

0.0

relevance

8.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP BusinessObjects Business Intelligence Platform Insufficient CSRF Protection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SAP BusinessObjects Business Intelligence Platform

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating