CVE-2025-23189

Description

Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an authenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability

References

https://url.sap/sapsecuritypatchday

https://me.sap.com/notes/3546470

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3