PT-2025-28276 · Sap · Sap Netweaver System Configuration
Published
2025-07-07
·
Updated
2025-07-22
·
CVE-2025-42953
CVSS v2.0
8.5
High
| Vector | AV:N/AC:L/Au:S/C:N/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
SAP Netweaver System Configuration (affected versions not specified)
Description:
The issue results from a lack of necessary authorization checks for an authenticated user, leading to escalation of privileges. This could completely compromise the integrity and availability of the system, with no impact on confidentiality.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sap Netweaver System Configuration