Due to missing authorization check, an attacker authenticated as a non-administrative user could call a remote-enabled function module. This could enable access to information normally restricted, resulting in low impact on confidentiality. There is no impact on integrity or availability.
References
Configurations
No configuration.
History
08 Jul 2025, 16:18
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
08 Jul 2025, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-08 01:15
Updated : 2025-07-08 16:18
NVD link : CVE-2025-42974
Mitre link : CVE-2025-42974
CVE.ORG link : CVE-2025-42974
JSON object : View
Products Affected
No product.
CWE
CWE-862
Missing Authorization