PT-2025-36549 · Sap · Sap Abap Reports
Published
2025-09-09
·
Updated
2025-09-14
·
CVE-2025-42916
CVSS v3.1
8.1
High
| Vector | AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
SAP ABAP Reports (affected versions not specified)
Description:
Due to missing input validation in ABAP reports, an attacker with high privilege access could delete the content of arbitrary database tables if the tables are not protected by an authorization group. This can have a high impact on the integrity and availability of the database.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sap Abap Reports