CVE-2025-42935

Medium CVSS: 4.1

The SAP NetWeaver Application Server ABAP and ABAP Platform Internet Communication Manager (ICM) permits authorized users with admin privileges and local access to log files to read sensitive information, resulting in information disclosure. This leads to high impact on the confidentiality of the application, with no impact on integrity or availability.

Vendor

Product

CWE

CWE-532

Yayın Tarihi

2025-08-12 03:15:26

Güncelleme

2025-08-12 14:25:33

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-532 MEDIUM 2025

Referanslar

https://me.sap.com/notes/3601480 https://url.sap/sapsecuritypatchday