Security Advisory

CVE-2025-42875

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 02:14:30

Last updated 2025-12-09 16:02:35

Assigner sap

State PUBLISHED

Description

The SAP Internet Communication Framework does not conduct any authentication checks for features that need user identification allowing an attacker to reuse authorization tokens, violating secure authentication practices causing low impact on Confidentiality, Integrity and Availability of the application.

← Browse all CVEs View on cve.org ↗