CVE-2025-42996 – SAP MDM Server Session Hijacking Vulnerability

CVE ID : CVE-2025-42996

Published : June 10, 2025, 1:15 a.m. | 1 hour, 44 minutes ago

Description : SAP MDM Server allows an attacker to gain control of existing client sessions and execute certain functions without having to re-authenticate giving the ability to access or modify non-sensitive information or consume sufficient resources which could degrade the performance of the server causing low impact on confidentiality, integrity and availibility of the application.

Severity: 5.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…