CVE-2025-42941Use of Web Link to Untrusted Target with window.opener Access in SE SAP Fiori

CWE-1022Use of Web Link to Untrusted Target with window.opener Access3 documents3 sources
Severity
3.5LOWNVD
EPSS
0.0%
top 93.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP SE SAP Fiori
Timeline
PublishedAug 12

Description

SAP Fiori (Launchpad) is vulnerable to Reverse Tabnabbing vulnerability due to inadequate external navigation protections for its link () elements. An attacker with administrative user privileges could exploit this by leveraging compromised or malicious pages. While administrative access is necessary for certain configurations, the attacker does not need the administrative privileges to execute the attack. This could result in unintended manipulation of user sessions or exposure of sensitive inf

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:NExploitability: 0.9 | Impact: 2.5

Affected Packages1 packages

CVEListV5sap_se/sap_fioriSAP_UI 754

🔴Vulnerability Details

2
CVEList
Reverse Tabnabbing vulnerability in SAP Fiori (Launchpad)2025-08-12
GHSA
GHSA-rg9f-crx8-f39q: SAP Fiori (Launchpad) is vulnerable to Reverse Tabnabbing vulnerability due to inadequate external navigation protections for its link () elements2025-08-12
CVE-2025-42941 — SAP SE SAP Fiori vulnerability | cvebase