216.73.217.176

CVE-2025-43008

· Published 13/05/2025 01:15 · Modified 13/05/2025 01:15

Labels: CVE-2025-43008 2025-05-13CVE-2025-43008CWE-862[email protected]

Essential information

Published
13/05/2025 01:15
Modified
13/05/2025 01:15
Author
Creator
CVSS
5.8 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

CVSS metrics

Description

Due to missing authorization check, an unauthorized user can view the files of other company. This might lead to disclosure of personal data of employees. There is no impact on integrity and availability.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
sap / sap cpe:2.3:a:sap:sap:*:*:*:*:*:*:*:*

References