CVE-2025-42958

SAP · NetWeaver

A missing authentication check in SAP NetWeaver on IBM i-series allows high-privileged unauthorized users to read, modify, or delete sensitive information.

Executive summary

A critical authentication bypass vulnerability in SAP NetWeaver on IBM i-series platforms enables unauthorized users to perform sensitive data operations.

Vulnerability

The vulnerability stems from a missing authentication check within the SAP NetWeaver application running on IBM i-series infrastructure. This oversight grants unauthorized actors the ability to execute high-privileged functions, including data manipulation and unauthorized access to sensitive system information.

Business impact

With a CVSS score of 9.1, this vulnerability is critical as it allows for the complete compromise of data integrity and confidentiality within the SAP environment. Unauthorized read, modification, or deletion of sensitive business data could lead to severe operational disruption, compliance violations, and significant reputational damage.

Remediation

Immediate Action: Review the official SAP security advisories to identify the specific patch levels required for your NetWeaver deployment on IBM i-series and apply them immediately.

Proactive Monitoring: Monitor user access logs for unusual administrative activity or unauthorized attempts to access or modify sensitive data records.

Compensating Controls: Apply strict network access controls to the NetWeaver application to limit exposure to only trusted endpoints while awaiting patch deployment.

Exploitation status

Public Exploit Available: Unknown

Analyst recommendation

The severity of this authentication bypass necessitates an immediate review of your SAP NetWeaver security posture. Security teams should prioritize identifying the affected systems and applying the relevant vendor patches to prevent unauthorized data manipulation.