CVE-2025-42955

Name of the Vulnerable Software and Affected Versions: SAP Cloud Connector (affected versions not specified)

Description: A missing authorization check in SAP Cloud Connector allows an attacker on an adjacent network with low privileges to send a crafted request to the endpoint responsible for testing LDAP connections. A successful exploit could lead to reduced performance and a low-impact on service availability. Confidentiality and integrity of the data are not affected.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.