VDB

CISA-2025-43005

CISA-2025-43005 PUBLISHED CVSS 4.3 MEDIUM

Reported by sap · Published May 13, 2025

SAP GUI for Windows allows an unauthenticated attacker to exploit insecure obfuscation algorithms used by the GuiXT application to store user credentials. While this issue does not impact the Integrity or Availability of the application, it may have a Low impact on the Confidentiality of data.

Risk Scores

CVSS 3.1
4.3
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected Products

VendorProductVersions
SAP_SESAP GUI for WindowsBC-FES-GUI 8.00
SAP_SESAP GUI for WindowsBC-FES-GUI 8.00, *

Timeline

  • May 13, 2025 CVE Published
  • May 13, 2025 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›