Security Advisory

CVE-2025-42951

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-12 02:08:43
Last updated 2026-02-26 17:49:44
Assigner sap
State PUBLISHED

Description

Due to broken authorization, SAP Business One (SLD) allows an authenticated attacker to gain administrator privileges of a database by invoking the corresponding API.�As a result , it has a high impact on the confidentiality, integrity, and availability of the application.