PT-2025-28297 · Sap · Sap Businessobjects Content Administrator Workbench
Published
2025-07-08
·
Updated
2025-07-08
·
CVE-2025-42985
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
SAP BusinessObjects Content Administrator Workbench (affected versions not specified)
Description:
The issue is due to insufficient sanitization in the SAP BusinessObjects Content Administrator Workbench, allowing attackers to craft malicious URLs and execute scripts in a victim's browser. This could potentially lead to the exposure or modification of web client data, resulting in low impact on confidentiality and integrity, with no impact on application availability.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Open Redirect
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sap Businessobjects Content Administrator Workbench