Potential code injection vulnerability in Crystal Reports Java components, SAP security note 2557167

Description

Crystal Reports Java components could allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Available fix and Supported packages

ENTERPRISE | 410 | 410
ENTERPRISE | 420 | 420
ENTERPRISE | 430 | 430
SBOP BI PLATFORM SERVERS 4.1 | SP011 | 000000
SBOP BI PLATFORM SERVERS 4.2 | SP006 | 000000

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/2557167

Arpine Maghakyan

Potential code injection vulnerability in Crystal Reports Java components, SAP security note 2557167

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Crystal-Reports-for-Enterprise
#CR4E
#CRE
#BusinessObjects

More to explorer

RedRays Offers Support to Startups Listing on SAP Store

Threat Modeling: An Overview of PASTA Methodology

SAP Security Patch Day – February 2023

3242933 – [CVE-2022-39802] File path traversal vulnerability in SAP Manufacturing Execution

Arpine Maghakyan

Potential code injection vulnerability in Crystal Reports Java components, SAP security note 2557167

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Crystal-Reports-for-Enterprise#CR4E#CRE#BusinessObjects

More to explorer

RedRays Offers Support to Startups Listing on SAP Store

Threat Modeling: An Overview of PASTA Methodology

SAP Security Patch Day – February 2023

3242933 – [CVE-2022-39802] File path traversal vulnerability in SAP Manufacturing Execution

#Crystal-Reports-for-Enterprise
#CR4E
#CRE
#BusinessObjects