Skip links
Vahagn Vardanian

Vahagn Vardanian

Co-founder and CTO of RedRays

CVE-2019-0333 Information Disclosure in SAP Business Objects Business Intelligence Platform (Web Intelligence and CMC), SAP security note 2764513

Description

This SAP security note addresses several vulnerabilities identified in SAP Business Objects. The vulnerability details along with their CVE relevant information can be found below.

Information Disclosure

1.The issue could lead Web Intelligence to fail to respect data restriction when refreshing documents with Prompts which then allows the user to retrieve more data than their authorized security profile. In particular, row-level security is not enforced.

  • CVE-2019-0333
  • CVSS Score: 6.5; CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

This issue could lead to disclose information to unauthorized users.

2.Unencrypted communication error in CMC leads to disclosure of list of user names and roles imported from SAP Netweaver BI systems (BW).

Under certain conditions SAP BusinessObjects Business Intelligence platform / Central Management Server allows an attacker to access information which would otherwise be restricted.

  • CVE-2019-0346
  • CVSS Score: 5.3; CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Some well-known impacts of Information Disclosure are –

  • loss of information and system configuration confidentiality
  • information gathering for further exploits and attacks 

Available fix and Supported packages

  • ENTERPRISE | 420 | 420
  • SBOP BI PLATFORM SERVERS 4.2 | SP005 | 001000
  • SBOP BI PLATFORM SERVERS 4.2 | SP006 | 000700
  • SBOP BI PLATFORM SERVERS 4.2 | SP007 | 000100
  • SBOP BI PLATFORM SERVERS 4.2 | SP008 | 000000
  • SBOP BI PLATFORM SERVERS 4.3 | SP000 | 000000

Affected component

    BI-RA-WBI-BE-DP
    Data Provider

CVSS

Score: 6.5
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2764513

TAGS

#Web-Intelligence
#WebI
#prompts
#row-level-security
#Information-Disclosure
#Unencrypted-communication-error
#CMC
#&160-CVE-2019-0346
#&160-CVE-2019-0333

Explore More

Special offer for SAP Security Udemy course!

$ 9.99

Join “SAP Security Core Concepts and Security Administration” which is part of the Blackhat course series.