CVE-2025-42974 — Due to missing authorization check, an attacker authenticated as a non-administrative user could call a remote-enabled function module. This could enable access to information normally restricted, res — CVE Database · The Intelligence Room