CVE-2025-30014 – Directory Traversal vulnerability in SAP Capital Yield Tax Management

https://notcve.org/view.php?id=CVE-2025-30014

08 Apr 2025 — SAP Capital Yield Tax Management has directory traversal vulnerability due to insufficient path validation. This could allow an attacker with low privileges to read files from directory which they don�t have access to, hence causing a high impact on confidentiality. Integrity and Availability are not affected. SAP Capital Yield Tax Management presenta una vulnerabilidad de directory traversal debido a una validación de ruta insuficiente. Esto podría permitir que un atacante con pocos privilegios lea archivo... • https://me.sap.com/notes/2927164 • CWE-35: Path Traversal: '.../ •