Vulnerability in Sap_se Sap Netweaver Application Server Abap (Applications Based On Gui For Html)
CVE-2025-0059
Applications based on SAP GUI for HTML in SAP NetWeaver Application Server ABAP store user input in the local browser storage to improve usability. An attacker with administrative privileges or access to the victim�s user directory on the…
EPSS: 0.002 (8.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N.
Affected products
- Sap_se Sap Netweaver Application Server Abap (Applications Based On Gui For Html) — versions KRNL64UC 7.53, KERNEL 7.53, 7.54
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-0059?
- CVE-2025-0059 is a medium-severity vulnerability in Sap_se Sap Netweaver Application Server Abap (Applications Based On Gui For Html), classified under Exposure of Sensitive System Information to an Unauthorized Control Sphere. CVSS score: 6.0/10. Published 2025-01-14.
- How severe is CVE-2025-0059?
- Medium severity. CVSS v3 base score is 6.0 out of 10.