CVE-2025-0066

Information Disclosure vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework)

Description

Under certain conditions SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework) allows an attacker to access restricted information due to weak access controls. This can have a significant impact on the confidentiality, integrity, and availability of an application

INFO

Published Date :

2025-01-14T00:09:36.035Z

Last Modified :

2025-01-14T14:50:46.306Z

Source :

sap

AFFECTED PRODUCTS

The following products are affected by CVE-2025-0066 vulnerability.

Vendors	Products
Sap	Abap Platform Netweaver Abap Netweaver As Abap Sap Basis

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-0066.

URL	Resource
https://me.sap.com/notes/3550708
https://url.sap/sapsecuritypatchday

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact