CVE-2025-23190

Due to missing authorization check, an authenticated attacker could call a remote-enabled function module which allows them to access data that they would otherwise not have access to. The attacker cannot modify data or impact the availability of the system. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt