CVE-2025-42962
published 2025-07-08CVE-2025-42962: SAP Business Warehouse (Business Explorer Web) allows an attacker to create a malicious link. If an authenticated user clicks on this link, the injected script…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
SAP Business Warehouse (Business Explorer Web) allows an attacker to create a malicious link. If an authenticated user clicks on this link, the injected script gets executed within the scope of victim�s browser. This potentially leads to an impact on confidentiality and integrity. Availability is not impacted.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |
| sap_se | sap_business_warehouse | — | — |