CVE-2025-26655
Missing Authorization check in SAP JIT(Outbound)
SAP Just In Time(JIT) does not perform necessary authorization checks for an authenticated user, allowing attacker to escalate privileges that would otherwise be restricted, potentially causing a low impact on the integrity of the application.Confidentiality and Availability are not impacted.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
Productos afectados
SAP_SE · SAP Just In Time¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →