VDB

CESS-2025-42997

CESS-2025-42997 PUBLISHED CVSS 6.6 MEDIUM

Under certain conditions, SAP Gateway Client allows a high-privileged user to access restricted information beyond the scope of the application. Due to the possibility of influencing application behavior or performance through misuse of the exposed data, this may potentially lead to low impact on confidentiality, integrity, and availability.

Risk Scores

CVSS 3.1
6.6
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

Timeline

  • May 13, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›