CVE-2025-23189
Description
SAP SDCCN component has a missing authorization check in an RFC-enabled function module, allowing authenticated attackers to generate technical metadata with low integrity impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
SAP SDCCN component has a missing authorization check in an RFC-enabled function module, allowing authenticated attackers to generate technical metadata with low integrity impact.
The vulnerability resides in the SDCCN transaction of SAP systems, where an RFC-enabled function module lacks sufficient authorization checks. As described in the official advisory, an authenticated attacker can exploit this missing authorization to generate technical metadata without proper validation [1].
Exploitation requires prior authentication to the SAP system, but does not need special administrative privileges. The attacker can invoke the vulnerable RFC function module remotely, as RFC-enabled modules are accessible over the network, making the attack surface broad for any authenticated user.
The impact is limited to low integrity loss, as the attacker can generate metadata that may be tampered with or falsified. The vulnerability does not affect confidentiality or availability, meaning no data disclosure or service disruption is expected [1].
SAP has released security notes as part of its monthly Security Patch Day to address this issue. Administrators should apply the relevant patches based on their support package stack, following the guidance in SAP Security Notes [1].
AI Insight generated on May 20, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.