Vulnerabilities

CVE-2025-42913

by Fred · 09/09/2025

Due to missing authorization checks, SAP HCM My Timesheet Fiori 2.0 application allows an authenticated attacker with in-depth system knowledge to escalate privileges and perform activities that are otherwise restricted, resulting in a low impact on the integrity of the application. Confidentiality and availability are not impacted.

More information : https://me.sap.com/notes/3635587

Similar

Tags: Cybersecurity Alert