Detections
Analytics
SAP BusinessObjects Business Intelligence Platform Authentication Bypass (3320702)
high Nessus Plugin ID 182509
Language:
Synopsis
The SAP business intelligence product installed on the remote Windows host is affected by an authentication bypass vulnerability.Description
The version of SAP BusinessObjects Business Intelligence Platform installed on the remote Windows host is affected by an authentication bypass vulnerability. SAP BusinessObjects Business Intelligence Platform - version 420, 430, allows an unauthorized attacker who had hijacked a user session, to be able to bypass the victim's old password via brute force, due to unrestricted rate limit for password change functionality. Although the attack has no impact on integrity loss or system availability, this could lead to an attacker to completely takeover a victim's account.Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number.
Solution
See vendor advisory.See Also
Plugin Details
Severity: High
ID: 182509
File Name: sap_business_objects_bip_jul_23_3320702.nasl
Version: 1.2
Type: local
Agent: windows
Family: Windows
Published: 10/4/2023
Updated: 4/11/2024
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: High
Base Score: 7.8
Temporal Score: 5.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N
CVSS Score Source: CVE-2023-36917
CVSS v3
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:sap:businessobjects_business_intelligence_platform
Required KB Items: SMB/Registry/Enumerated, installed_sw/SAP BusinessObjects Business Intelligence Platform
Exploit Ease: No known exploits are available
Patch Publication Date: 7/11/2023
Vulnerability Publication Date: 7/11/2023
Reference Information
CVE: CVE-2023-36917