Security Advisory

CVE-2025-42917

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-09 02:09:10

Last updated 2026-02-26 17:49:06

Assigner sap

State PUBLISHED

Description

SAP HCM Approve Timesheets Fiori 2.0 application does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This issue has a significant impact on the applications integrity, while confidentiality and availability remain unaffected.

← Browse all CVEs View on cve.org ↗