wagov · JadonWill · Oct 9, 2024 · Feb 19, 2024 · Feb 19, 2024 · Feb 19, 2024
diff --git a/docs/advisories/20241009003-SAP-Critical-Vulnerability.md b/docs/advisories/20241009003-SAP-Critical-Vulnerability.md
@@ -0,0 +1,21 @@
+# SAP Critical Vulnerability - 20241009003
+
+## Overview
+
+In SAP BusinessObjects Business Intelligence Platform, if Single Signed On is enabled on Enterprise authentication, an unauthorized user can get a logon token using a REST endpoint. The attacker can fully compromise the system resulting in High impact on confidentiality, integrity and availability.
+
+## What is vulnerable?
+
+| Product(s) Affected                                | Version(s)                         | CVE                                                                | CVSS | Severity     |
+| -------------------------------------------------- | ---------------------------------- | ------------------------------------------------------------------ | ---- | ------------ |
+| SAP BusinessObjects Business Intelligence Platform | ENTERPRISE 430 <br> ENTERPRISE 440 | [CVE-2024-41730 ](https://nvd.nist.gov/vuln/detail/CVE-2024-41730) | 9.8  | **Critical** |
+
+## What has been observed?
+
+There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.
+
+## Recommendation
+
+The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *48 hours...* (refer [Patch Management](../guidelines/patch-management.md)):
+
+- SAP advisory: <https://support.sap.com/en/my-support/knowledge-base/security-notes-news/october-2024.html>