CVE-2025-42911
published 2025-09-09CVE-2025-42911: SAP NetWeaver (Service Data Download) allows an authenticated user to call a remote-enabled function module, which could grant access to information about the…
medium4.3CVSS 3.1
AVNACLPRLUINSUCLINAN
SAP NetWeaver (Service Data Download) allows an authenticated user to call a remote-enabled function module, which could grant access to information about the SAP system and operating system. This leads to a low impact on confidentiality, with no effect on the integrity and availability of the application
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap | sap_basis | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |
| sap_se | sap_netweaver | — | — |