CVE-2025-42902 Memory Corruption vulnerability in SAP Netweaver AS ABAP and ABAP Platform

🗓️ 14 Oct 2025 00:17:32Reported by sapType

Memory corruption in netweaver abap enables unauthenticated crashes via corrupted tickets; low availability impact.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-42902	29 Oct 202503:20	–	circl
CNNVD	SAP NetWeaver AS ABAP Business Server和SAP ABAP Platform 代码问题漏洞	14 Oct 202500:00	–	cnnvd
CVE	CVE-2025-42902	14 Oct 202500:17	–	cve
EUVD	EUVD-2025-34125	14 Oct 202500:17	–	euvd
NCSC	Vulnerabilities fixed in SAP Products	17 Oct 202508:04	–	ncsc
NVD	CVE-2025-42902	14 Oct 202501:15	–	nvd
Positive Technologies	PT-2025-41837	14 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-42902	15 Oct 202500:51	–	redhatcve
Tenable Nessus	SAP NetWeaver AS ABAP Multiple Vulnerabilities (October 2025)	17 Oct 202500:00	–	nessus
Vulnrichment	CVE-2025-42902 Memory Corruption vulnerability in SAP Netweaver AS ABAP and ABAP Platform	14 Oct 202500:17	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP Netweaver AS ABAP and ABAP Platform",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "KRNL64NUC 7.22"
      },
      {
        "status": "affected",
        "version": "7.22EXT"
      },
      {
        "status": "affected",
        "version": "KRNL64UC 7.22"
      },
      {
        "status": "affected",
        "version": "7.53"
      },
      {
        "status": "affected",
        "version": "KERNEL 7.22"
      },
      {
        "status": "affected",
        "version": "7.54"
      },
      {
        "status": "affected",
        "version": "7.77"
      },
      {
        "status": "affected",
        "version": "7.89"
      },
      {
        "status": "affected",
        "version": "7.93"
      },
      {
        "status": "affected",
        "version": "9.14"
      },
      {
        "status": "affected",
        "version": "9.15"
      },
      {
        "status": "affected",
        "version": "9.16"
      }
    ]
  }
]

Source	Link
url	www.url.sap/sapsecuritypatchday
me	www.me.sap.com/notes/3627308

14 Oct 2025 00:17Current

CVSS 3.15.3

EPSS0.0008

CWE-476