SAP Business One Security Restriction Bypass Vulnerability

Release Date: 12 Jun 2025

RISK: Medium Risk

TYPE: Clients - Productivity Products

A vulnerability was identified in SAP Business One. A remote attacker could exploit this vulnerability to trigger security restriction bypass on the targeted system.

---

Impact

• Security Restriction Bypass

---

System / Technologies affected

• SAP Business One Integration Framework Versions – B1_ON_HANA 10.0, SAP-M-BO 10.0

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://support.sap.com/en/my-support/knowledge-base/security-notes-news/june-2025.html

---

Vulnerability Identifier

• CVE-2025-42998

---

Source

• SAP

---

Related Link

• https://support.sap.com/en/my-support/knowledge-base/security-notes-news/june-2025.html