VDB
CISA-2025-43005
CISA-2025-43005
PUBLISHED
CVSS 4.3 MEDIUM
Reported by sap · Published May 13, 2025
SAP GUI for Windows allows an unauthenticated attacker to exploit insecure obfuscation algorithms used by the GuiXT application to store user credentials. While this issue does not impact the Integrity or Availability of the application, it may have a Low impact on the Confidentiality of data.
Risk Scores
CVSS 3.1
4.3
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP_SE | SAP GUI for Windows | BC-FES-GUI 8.00 |
| SAP_SE | SAP GUI for Windows | BC-FES-GUI 8.00, * |
Timeline
- May 13, 2025 CVE Published
- May 13, 2025 CVE Updated