Security Advisory

CVE-2025-42937

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-14 00:18:31

Last updated 2026-02-26 17:47:43

Assigner sap

State PUBLISHED

Description

SAP Print Service (SAPSprint) performs insufficient validation of path information provided by users. An unauthenticated attacker could traverse to the parent directory and over-write system files causing high impact on confidentiality integrity and availability of the application.

← Browse all CVEs View on cve.org ↗