Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-42953

SAP Netweaver System Configuration does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This could completely compromise the integrity and availability with no impact on confidentiality of the system.

Published

2025-07-08T01:15:22.163

Last Modified

2025-07-08T16:18:14.207

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses

Type: Primary
CWE-862

Affected Vendors & Products

References

https://me.sap.com/notes/3623440 ([email protected])
https://url.sap/sapsecuritypatchday ([email protected])