Primary

Context

SAP MDM Server Memory Access Violation Vulnerability in ReadString Function

Vulnerability

A vulnerability in the SAP MDM Server's ReadString function allows attackers to send specially crafted packets that can cause a memory read access violation. This violation leads to the server process failing and exiting unexpectedly, which significantly impacts the application's availability. However, there is no effect on the confidentiality or integrity of the application.

Impact

Exploitation of this vulnerability causes a memory access violation, leading to a crash of the server process and an unexpected exit, causing a significant disruption in service availability.

Remediation

Users are advised to review and implement the SAP Security Note related to this vulnerability, available through the SAP for Me platform. This vulnerability will also be addressed in the upcoming SAP Security Patch Day.

Added: Jun 10, 2025, 1:20 AM

Updated: Jun 10, 2025, 1:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP MDM Server Memory Access Violation Vulnerability in ReadString Function

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating