Information disclosure in Sap_se Sap Business Objects Intelligence Platform

CVE-2025-23185

Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in stack traces. Only an attacker with administrator level privil…

EPSS: 0.003 (18.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.1 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2025-23185?
CVE-2025-23185 is a medium-severity vulnerability in Sap_se Sap Business Objects Intelligence Platform, classified under Generation of Error Message Containing Sensitive Information. CVSS score: 4.1/10. Published 2025-03-11.
How severe is CVE-2025-23185?
Medium severity. CVSS v3 base score is 4.1 out of 10.