CVE-2025-43002
published 2025-05-13CVE-2025-43002: SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted information due to missing authorization check. This could cause a…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted information due to missing authorization check. This could cause a low impact on confidentiality but integrity and availability of the application are not impacted.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap_se | sap_s4_hana | — | — |
| sap_se | sap_s4_hana | — | — |
| sap_se | sap_s4_hana | — | — |
| sap_se | sap_s4_hana | — | — |
| sap_se | sap_s4_hana | — | — |