Security Advisory

CVE-2025-42895

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-11 00:19:38

Last updated 2025-11-12 20:10:07

Assigner sap

State PUBLISHED

Description

Due to insufficient validation of connection property values, the SAP HANA JDBC Client allows a high-privilege locally authenticated user to supply crafted parameters that lead to unauthorized code loading, resulting in low impact on confidentiality and integrity and high impact on availability of the application.

← Browse all CVEs View on cve.org ↗