CVE-2025-42886

Name of the Vulnerable Software and Affected Versions SAP Business Connector (affected versions not specified)

Description A Reflected Cross-Site Scripting (XSS) issue exists in SAP Business Connector. An unauthenticated attacker can create a malicious link and distribute it. If a user accesses this link, malicious content can execute in their browser, potentially allowing the attacker to access or modify information within the user’s browser. This impacts the confidentiality and integrity of data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.