Conversation
AttackerKB
attackerkb
New assessment for topic: CVE-2025-42957
Topic description: "SAP S/4HANA allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC ..."
"A low-privileged SAP user who can invoke the vulnerable RFC function can inject arbitrary ABAP, bypassing critical auth checks and achieving administrative control over SAP S/4HANA; pivot to the underlying host is feasible. ..."
Link: https://attackerkb.com/assessments/9e4b5480-8085-4545-a60b-a224b42105c1
Topic description: "SAP S/4HANA allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC ..."
"A low-privileged SAP user who can invoke the vulnerable RFC function can inject arbitrary ABAP, bypassing critical auth checks and achieving administrative control over SAP S/4HANA; pivot to the underlying host is feasible. ..."
Link: https://attackerkb.com/assessments/9e4b5480-8085-4545-a60b-a224b42105c1
0
0
0