Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-42936

The SAP NetWeaver Application Server for ABAP does not enable an administrator to assign distinguished authorizations for different user roles, this issue allows authenticated users to access restricted objects in the barcode interface, leading to privilege escalation. This results in a low impact on the confidentiality and integrity of the application, there is no impact on availability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.7%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2025-42936
  • Sap » Sap Basis » Version: 700
    cpe:2.3:a:sap:sap_basis:700
  • Sap » Sap Basis » Version: 701
    cpe:2.3:a:sap:sap_basis:701
  • Sap » Sap Basis » Version: 702
    cpe:2.3:a:sap:sap_basis:702
  • Sap » Sap Basis » Version: 731
    cpe:2.3:a:sap:sap_basis:731
  • Sap » Sap Basis » Version: 740
    cpe:2.3:a:sap:sap_basis:740
  • Sap » Sap Basis » Version: 750
    cpe:2.3:a:sap:sap_basis:750
  • Sap » Sap Basis » Version: 751
    cpe:2.3:a:sap:sap_basis:751
  • Sap » Sap Basis » Version: 752
    cpe:2.3:a:sap:sap_basis:752
  • Sap » Sap Basis » Version: 753
    cpe:2.3:a:sap:sap_basis:753
  • Sap » Sap Basis » Version: 754
    cpe:2.3:a:sap:sap_basis:754
  • Sap » Sap Basis » Version: 755
    cpe:2.3:a:sap:sap_basis:755
  • Sap » Sap Basis » Version: 756
    cpe:2.3:a:sap:sap_basis:756
  • Sap » Sap Basis » Version: 757
    cpe:2.3:a:sap:sap_basis:757
  • Sap » Sap Basis » Version: 758
    cpe:2.3:a:sap:sap_basis:758
  • Sap » Sap Basis » Version: 816
    cpe:2.3:a:sap:sap_basis:816


Products
Pricing
Contact Us

Shodan ® - All rights reserved