CVE-2025-0060

Name of the Vulnerable Software and Affected Versions SAP BusinessObjects Business Intelligence Platform (affected versions not specified)

Description The issue allows an authenticated user with restricted access to inject malicious JavaScript code, which can read sensitive information from the server and send it to the attacker. This information could be used to impersonate a high-privileged user, causing a significant impact on the confidentiality and integrity of the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.