CVE-2025-42890

Critical CVSS: 10.0

SQL Anywhere Monitor (Non-GUI) baked credentials into the code,exposing the resources or functionality to unintended users and providing attackers with the possibility of arbitrary code execution.This could cause high impact on confidentiality integrity and availability of the system.

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2025-11-11 01:15:37

Güncelleme

2025-11-12 16:19:59

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-798 CRITICAL 2025

Referanslar

https://me.sap.com/notes/3666261 https://url.sap/sapsecuritypatchday