CVE-2025-42998
Security misconfiguration vulnerability in SAP Business One Integration Framework
The security settings in the SAP Business One Integration Framework are not adequately checked, allowing attackers to bypass the 403 Forbidden error and access restricted pages. This leads to low impact on confidentiality of the application, there is no impact on integrity and availability.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected products
SAP_SE · SAP Business One Integration FrameworkWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →