CVE-2025-0053 Information Disclosure Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform

🗓️ 14 Jan 2025 00:08:21Reported by sapType

Unauthorized access to system information in SAP NetWeaver due to vulnerability CVE-2025-0053

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of SAP NetWeaver Application Server ABAP and ABAP Platform software integration platforms, related to information leakage in error messages, allows attackers to gain unauthorized access to protected information.	20 Jan 202500:00	–	bdu_fstec
Circl	CVE-2025-0053	14 Jan 202501:18	–	circl
CNNVD	SAP NetWeaver Application Server 安全漏洞	13 Jan 202500:00	–	cnnvd
CVE	CVE-2025-0053	14 Jan 202500:08	–	cve
EUVD	EUVD-2025-1483	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	14 Jan 202511:50	–	ncsc
NVD	CVE-2025-0053	14 Jan 202501:15	–	nvd
Positive Technologies	PT-2025-1184 · Sap · Sap Netweaver Application Server For Abap/Abap Platform	14 Jan 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-0053	23 May 202511:57	–	redhatcve
Tenable Nessus	SAP NetWeaver AS ABAP (3536461)	22 Jan 202500:00	–	nessus

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP NetWeaver Application Server for ABAP and ABAP Platform",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "SAP_BASIS 700"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 701"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 702"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 731"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 740"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 750"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 751"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 752"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 753"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 754"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 755"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 756"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 757"
      }
    ]
  }
]

Source	Link
url	www.url.sap/sapsecuritypatchday
me	www.me.sap.com/notes/3536461

14 Jan 2025 00:08Current

CVSS 3.15.3

EPSS0.00225

CWE-209