Vulnerability in SAP BusinessObjects Central Management Console Allows User Impersonation
CVE-2025-0064
8.7HIGH
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 11 February 2025
What is CVE-2025-0064?
The Central Management Console of the SAP BusinessObjects Business Intelligence platform presents a vulnerability where an authenticated attacker with administrative privileges can generate or retrieve a secret passphrase. This flaw potentially allows the attacker to impersonate any user within the system, threatening the confidentiality and integrity of user data without affecting system availability. Immediate remediation is advised to prevent unauthorized access.
Affected Version(s)
SAP BusinessObjects Business Intelligence platform (Central Management Console) ENTERPRISE 430
SAP BusinessObjects Business Intelligence platform (Central Management Console) 2025