CVE-2025-43002

Medium CVSS: 4.3

SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted information due to missing authorization check. This could cause a low impact on confidentiality but integrity and availability of the application are not impacted.

Vendor

Product

CWE

CWE-472

Yayın Tarihi

2025-05-13 01:15:48

Güncelleme

2025-05-13 19:35:18

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-472 MEDIUM 2025

Referanslar

https://me.sap.com/notes/3227940 https://url.sap/sapsecuritypatchday