Vulnerabilities > CVE-2024-25645 - Unspecified vulnerability in SAP Netweaver Enterprise Portal 7.50

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2024-03-12

Updated: 2025-02-07

Summary

Under certain condition SAP NetWeaver (Enterprise Portal) - version 7.50 allows an attacker to access information which would otherwise be restricted causing low impact on confidentiality of the application and with no impact on Integrity and Availability of the application.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Netweaver Enterprise Portal 7.50	1

References

https://me.sap.com/notes/3428847
https://me.sap.com/notes/3428847
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html?anchorId=section_370125364