CVE-2025-42893

Name of the Vulnerable Software and Affected Versions SAP Business Connector (affected versions not specified)

Description An unauthenticated attacker can exploit an Open Redirect flaw in SAP Business Connector by creating a malicious URL. If a user accesses this URL, they are redirected to a website controlled by the attacker, which is displayed within an embedded frame. Successful exploitation could lead to the theft of sensitive information and the execution of unauthorized actions, compromising the confidentiality and integrity of web client data. System availability is not affected by this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.