CVE-2025-42954

Low CVSS: 2.7

SAP NetWeaver Business Warehouse CCAW application allows a privileged attacker to cause a high CPU load by executing a RFC enabled function modules without any input parameters, which results in reduced performance or interrupted operation of the affected resource. This leads to low impact on availability of the application, there is no impact on confidentiality and integrity.

Vendor

Product

CWE

CWE-835

Yayın Tarihi

2025-07-08 01:15:22

Güncelleme

2025-07-08 16:18:14

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-835 LOW 2025

Referanslar

https://me.sap.com/notes/3608156 https://url.sap/sapsecuritypatchday