4 matches found
CVE-2025-42965
creationtimestamp| type| source ---|---|--- 2025-07-08 03:57:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltgfv3tl2e25...
CVE-2025-42965
SAP CMC Promotion Management allows an authenticated attacker to enumerate internal network systems by submitting crafted requests during job source configuration. By analysing response times for various IP addresses and ports, the attacker can infer valid network endpoints. Successful exploitati...
CVE-2025-42965
CVE-2025-42965 affects SAP CMC Promotion Management and is an SSRF issue where an authenticated attacker can enumerate internal network endpoints by sending crafted requests during job source configuration and analyzing response times. This can lead to information disclosure (confidentiality impa...
CVE-2025-42965 Server Side Request Forgery(SSRF) vulnerability in SAP BusinessObjects BI Platform Central Management Console Promotion Management Application
SAP CMC Promotion Management allows an authenticated attacker to enumerate internal network systems by submitting crafted requests during job source configuration. By analysing response times for various IP addresses and ports, the attacker can infer valid network endpoints. Successful exploitati...