Security Advisory

CVE-2025-42901

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-14 00:17:23

Last updated 2025-10-14 15:21:26

Assigner sap

State PUBLISHED

Description

SAP Application Server for ABAP allows an authenticated attacker to store malicious JavaScript payloads which could be executed in victim users browser when accessing the affected functionality of BAPI explorer. This has low impact on confidentiality and integrity with no impact on availability of the application.

← Browse all CVEs View on cve.org ↗