CVE-2025-25244
CVSS 3.1 Score 5.7 of 10 (medium)
Details
Published Mar 11, 2025
CWE ID 862
Summary
CVE-2025-25244 is a vulnerability affecting SAP Business Warehouse's Process Chains. An attacker with display authorization for process chain objects can manipulate the process execution by skipping one or all processes. While this does not impact confidentiality or availability directly, the lack of proper authorization checks could lead to unexpected results in business reporting, potentially causing significant integrity issues.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- SAP SE