CVE-2025-42996

Name of the Vulnerable Software and Affected Versions SAP Master Data Management Server (affected versions not specified)

Description The issue allows an attacker to gain control of existing client sessions and execute certain functions without having to re-authenticate. This gives the ability to access or modify non-sensitive information or consume sufficient resources, which could degrade the performance of the server, causing low impact on confidentiality, integrity, and availability of the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.