SAP Business Warehouse and SAP Plug-In Basis allows an authenticated attacker to add fields to arbitrary SAP database tables and/or structures, potentially rendering the system unusable. On successful exploitation, an attacker can render the system unusable by triggering short dumps on login. This could cause a high impact on availability. Data confidentiality and integrity are not affected. No data can be read, changed or deleted.
References
Configurations
No configuration.
History
08 Jul 2025, 16:18
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
08 Jul 2025, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-07-08 01:15
Updated : 2025-07-08 16:18
NVD link : CVE-2025-42952
Mitre link : CVE-2025-42952
CVE.ORG link : CVE-2025-42952
JSON object : View
Products Affected
No product.
CWE
CWE-862
Missing Authorization