Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-33004

SAP Business Objects Business Intelligence Platform is vulnerable to Insecure Storage as dynamic web pages are getting cached even after logging out. On successful exploitation, the attacker can see the sensitive information through cache and can open the pages causing limited impact on Confidentiality, Integrity and Availability of the application.

Published

2024-05-14T16:17:13.957

Last Modified

2025-10-23T12:21:52.390

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-524
Type: Secondary
CWE-922

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	sap	businessobjects_business_intelligence_platform	430	Yes
Application	sap	businessobjects_business_intelligence_platform	440	Yes

References

https://me.sap.com/notes/3449093 Permissions Required ([email protected])
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html Patch ([email protected])
https://me.sap.com/notes/3449093 Permissions Required (af854a3a-2127-422b-91ae-364da2661108)
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html Patch (af854a3a-2127-422b-91ae-364da2661108)