CVE-2025-42994

High CVSS: 7.5

SAP MDM Server ReadString function allows an attacker to send specially crafted packets which could trigger a memory read access violation in the server process that would then fail and exit unexpectedly causing high impact on availability with no impact on confidentiality and integrity of the application.

Vendor

Product

CWE

CWE-590

Yayın Tarihi

2025-06-10 01:15:22

Güncelleme

2025-06-12 16:06:39

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-590 HIGH 2025

Referanslar

https://me.sap.com/notes/3610006 https://url.sap/sapsecuritypatchday