← volver
CVE-2025-31332

Insecure File permissions vulnerability in SAP BusinessObjects Business Intelligence Platform

CVSS 6.6 MEDIUMEPSS 0.1%CWE-277
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.6EPSS 0.1%KEV nãoPoC Patch
Ciclo de vida
08 abr 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Due to insecure file permissions in SAP BusinessObjects Business Intelligence Platform, an attacker who has local access to the system could modify files potentially disrupting operations or cause service downtime hence leading to a high impact on integrity and availability. However, this vulnerability does not disclose any sensitive data.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H
Productos afectados
SAP_SE · SAP BusinessObjects Business Intelligence Platform

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://me.sap.com/notes/3565751https://url.sap/sapsecuritypatchday