CVE-2014-8666

Published: Nov 6, 2014Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The User & Server configuration, InfoView refresh, user rights (BI-BIP-ADM) component in SAP Business Intellignece allows remote attackers to obtain audit event details via unspecified vectors.

Affected (1)

Products: Sap: Business Intelligence Development Workbench

Sap

1 product

Business Intelligence Development Workbench

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sap Business Intelligence Development Workbench	All versions

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/

Source: cve@mitre.org

http://service.sap.com/sap/support/notes/0002011395

Source: cve@mitre.org

http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/

Source: af854a3a-2127-422b-91ae-364da2661108

http://service.sap.com/sap/support/notes/0002011395

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.