CVE-2025-42984 – SAP S/4HANA Authorization Bypass

June 9, 2025

CVE ID : CVE-2025-42984

Published : June 10, 2025, 1:15 a.m. | 23 minutes ago

Description : SAP S/4HANA Manage Central Purchase Contract does not perform necessary authorization checks for an authenticated user. Due to this, an attacker could execute the function import on the entity making it inaccessible for unrestricted user. This has low impact on confidentiality and availability of the application.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-42987 – SAP Manage Processing Rules Authorization Bypass

Next Article CVE-2025-42977 – SAP NetWeaver Visual Composer Directory Traversal Vulnerability

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-42984 – SAP S/4HANA Authorization Bypass

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

CVE-2025-2772 – BEC Technologies Router Credentials Disclosure Vulnerability

CVE-2025-49008 – Atheos Command Injection Vulnerability

CVE-2025-4017 – Novel-Plus LogController Java Unauthenticated Remote Authorization Bypass

Secure distributed logging in scalable multi-account deployments using Amazon Bedrock and LangChain

Microsoft’s Xbox Floral Collection 2025 adds fresh style to your gaming setup

CVE-2025-49080 – “Absolute Secure Access Server Denial of Service Vulnerability”

WordFinder app: Harnessing generative AI on AWS for aphasia communication

Understanding the :root Selector and CSS Variables in CSS3

CVE-2025-42984 – SAP S/4HANA Authorization Bypass

Related Posts