Information Exposure Vulnerability in SAP NetWeaver Server ABAP
CVE-2025-23193
5.3MEDIUM
What is CVE-2025-23193?
The SAP NetWeaver Server ABAP exhibits a vulnerability that allows an unauthenticated attacker to exploit the server's response behavior based on the existence of specific user accounts. This flaw can lead to the unintended disclosure of sensitive information, providing attackers with insights into the server's configuration and user presence, without allowing for data modification or impacting server availability.
Affected Version(s)
SAP NetWeaver Server ABAP SAP_BASIS 700
SAP NetWeaver Server ABAP SAP_BASIS 701
SAP NetWeaver Server ABAP SAP_BASIS 702