Primary

Context

SAP NetWeaver Application Server for ABAP Improper Authentication Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform allows authenticated attackers to exploit improper authentication checks, leading to unauthorized access and privilege escalation. This exploitation can cause significant security issues, with a high impact on confidentiality, integrity, and availability.

Impact

Successful exploitation of this vulnerability allows for unauthorized access to the system and privilege escalation, potentially leading to significant security concerns.

Remediation

Users are advised to review and implement the SAP Security Notes available in SAP for Me. Security fixes for SAP NetWeaver based products are delivered with the support packages. For information on the latest SAP Security Patch Day, refer to the SAP Security Patch Day Bulletin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

7.5

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP NetWeaver Application Server for ABAP Improper Authentication Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

SAP NetWeaver Application Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating