Path Traversal Vulnerability in SAP Commerce Cloud by SAP
CVE-2025-42906
5.3MEDIUM
What is CVE-2025-42906?
SAP Commerce Cloud has a path traversal vulnerability that allows unauthorized users to access administrative web applications like the Administration Console from unintended addresses. This flaw can circumvent set access restrictions, potentially compromising confidentiality. It is crucial for users to implement proper security measures and updates to safeguard against such vulnerabilities.
Affected Version(s)
SAP Commerce Cloud COM_CLOUD 2211