{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T17:27:22.307","vulnerabilities":[{"cve":{"id":"CVE-2022-41263","sourceIdentifier":"cna@sap.com","published":"2022-12-12T22:15:10.417","lastModified":"2024-11-21T07:22:56.440","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Due to a missing authentication check, SAP Business Objects Business Intelligence Platform (Web Intelligence) - versions 420, 430, allows an authenticated non-administrator attacker to modify the data source information for a document that is otherwise restricted. On successful exploitation, the attacker can modify information causing a limited impact on the integrity of the application."},{"lang":"es","value":"Debido a que falta una verificación de autenticación, SAP Business Objects Business Intelligence Platform (Web Intelligence), versiones 420, 430, permite que un atacante no administrador autenticado modifique la información del origen de datos de un documento que de otro modo estaría restringido. Si la explotación tiene éxito, el atacante puede modificar la información causando un impacto limitado en la integridad de la aplicación."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cna@sap.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]},{"source":"nvd@nist.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:business_objects_business_intelligence_platform:420:*:*:*:*:*:*:*","matchCriteriaId":"1F7F8064-45BC-4A01-897A-0A2893BBBEC0"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:business_objects_business_intelligence_platform:430:*:*:*:*:*:*:*","matchCriteriaId":"6EB0EFA3-8AD2-42F2-86E1-A62ECF8340E3"}]}]}],"references":[{"url":"https://launchpad.support.sap.com/#/notes/3249648","source":"cna@sap.com","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html","source":"cna@sap.com","tags":["Vendor Advisory"]},{"url":"https://launchpad.support.sap.com/#/notes/3249648","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}