CVE-2025-23193
published 2025-02-11CVE-2025-23193: SAP NetWeaver Server ABAP allows an unauthenticated attacker to exploit a vulnerability that causes the server to respond differently based on the existence of…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
SAP NetWeaver Server ABAP allows an unauthenticated attacker to exploit a vulnerability that causes the server to respond differently based on the existence of a specified user, potentially revealing sensitive information. This issue does not enable data modification and has no impact on server availability.
Affected
28 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |
| sap_se | sap_netweaver_server_abap | — | — |