Security Advisory

CVE-2025-42958

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-09 02:11:46

Last updated 2026-02-26 17:49:05

Assigner sap

State PUBLISHED

Description

Due to a missing authentication check in the SAP NetWeaver application on IBM i-series, the application allows high privileged unauthorized users to read, modify, or delete sensitive information, as well as access administrative or privileged functionalities. This results in a high impact on the confidentiality, integrity, and availability of the application.

← Browse all CVEs View on cve.org ↗