Information disclosure in Sap_se Sap Business Objects Intelligence Platform
CVE-2025-23185
Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in stack traces. Only an attacker with administrator level privil…
EPSS: 0.003 (18.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.1 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N.
Affected products
- Sap_se Sap Business Objects Intelligence Platform — versions ENTERPRISE 430, 2025, 2027
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-23185?
- CVE-2025-23185 is a medium-severity vulnerability in Sap_se Sap Business Objects Intelligence Platform, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.1/10. Published 2025-03-11.
- How severe is CVE-2025-23185?
- Medium severity. CVSS v3 base score is 4.1 out of 10.