CVE-2025-42907 | SAP BI Platform 2025/2027/ENTERPRISE 430 LogonToken server-side request forgery

A vulnerability was found in SAP BI Platform 2025/2027/ENTERPRISE 430. It has been classified as critical. Affected by this vulnerability is an unknown functionality of the component LogonToken Handler. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2025-42907. It is possible to initiate the attack remotely. There is no exploit available.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More