Security Advisory

CVE-2025-42912

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-09 02:06:08

Last updated 2026-02-26 17:49:07

Assigner sap

State PUBLISHED

Description

SAP HCM My Timesheet Fiori 2.0 application does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This issue has a significant impact on the applications integrity, while confidentiality and availability remain unaffected.

← Browse all CVEs View on cve.org ↗