CVE-2025-30016

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Apr 8, 2025

CWE ID 921

Summary

CVE-2025-30016 is a vulnerability affecting SAP Financial Consolidation. This issue grants unauthenticated attackers access to the Admin account, bypassing proper authentication mechanisms. The consequences are significant, as the vulnerability poses a high risk to the Confidentiality, Integrity, and Availability of the application. Attackers could exploit this vulnerability to gain unauthorized control or manipulate financial data, leading to potential financial losses or system compromise. Organizations using SAP Financial Consolidation are strongly advised to apply the necessary patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

SAP Financial Consolidation

Affected Vendors

SAP SE

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners