← voltar
CVE-2025-31332

Insecure File permissions vulnerability in SAP BusinessObjects Business Intelligence Platform

CVSS 6.6 MEDIUMEPSS 0.1%CWE-277
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.6EPSS 0.1%KEV nãoPoC Patch
Ciclo de vida
08 abr 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Due to insecure file permissions in SAP BusinessObjects Business Intelligence Platform, an attacker who has local access to the system could modify files potentially disrupting operations or cause service downtime hence leading to a high impact on integrity and availability. However, this vulnerability does not disclose any sensitive data.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H
Produtos afetados
SAP_SE · SAP BusinessObjects Business Intelligence Platform

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://me.sap.com/notes/3565751https://url.sap/sapsecuritypatchday