Sap_se Sap Gui For Windows
8 CVEs affecting Sap_se Sap Gui For Windows. Latest disclosed: 2025-11-11. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-32113 | High | 7.5 | 2023-05-09 | SAP GUI for Windows - version 7.70, 8.0, allows an unauthorized attacker to gain NTLM authentication information of a victim by tricking it into clicking a pre… |
CVE-2025-24870 | Medium | 6.0 | 2025-02-11 | SAP GUI for Windows & RFC service credentials are incorrectly stored in the memory of the program allowing an unauthenticated attacker to access information wi… |
CVE-2025-0055 | Medium | 6.0 | 2025-01-14 | SAP GUI for Windows stores user input on the client PC to improve usability. Under very specific circumstances an attacker with administrative privileges or ac… |
CVE-2025-42979 | Medium | 5.6 | 2025-07-08 | The GuiXT application, which is integrated with SAP GUI for Windows, uses obfuscation algorithms instead of secure symmetric ciphers for storing the credential… |
CVE-2025-42888 | Medium | 5.5 | 2025-11-11 | SAP GUI for Windows may allow a highly privileged user on the affected client PC to locally access sensitive information stored in process memory during runtim… |
CVE-2024-39600 | Medium | 5.0 | 2024-07-09 | Under certain conditions, the memory of SAP GUI for Windows contains the password used to log on to an SAP system, which might allow an attacker to get hold of… |
CVE-2025-42943 | Medium | 4.5 | 2025-08-12 | SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths. For a successful attack, the attacker nee… |
CVE-2025-43005 | Medium | 4.3 | 2025-05-13 | SAP GUI for Windows allows an unauthenticated attacker to exploit insecure obfuscation algorithms used by the GuiXT application to store user credentials. Whil… |