Security Advisory

CVE-2025-42955

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-12 02:09:43

Last updated 2025-08-13 20:20:00

Assigner sap

State PUBLISHED

Description

Due to a missing authorization check in SAP Cloud Connector, an attacker on an adjacent network with low privileges could send a crafted request to the endpoint responsible for testing LDAP connections. A successful exploit could lead to reduced performance, hence a low-impact on availability of the service. Confidentiality and integrity of the data are not affected.

← Browse all CVEs View on cve.org ↗