CVE 4.5 MEDIUM

Information Disclosure in SAP GUI for Windows_CVE-2025-42943

August 11, 2025 invoker category_cve

4.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N

Description

SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths. For a successful attack, the attacker needs developer authorization in a specific Application Server ABAP to make changes in the code, and the victim needs to execute by using SAP GUI for Windows. This could trigger automatic NTLM authentication, potentially exposing hashed credentials to an attacker. As a result, it has a high impact on the confidentiality.

AI Analysis

SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths, potentially exposing hashed credentials to an attacker.

Basic Information

ID CVE-2025-42943

Source sap

Published Aug 12, 2025 at 02:05

Affected Product

Vendor SAP_SE

Product SAP GUI for Windows

Version BC-FES-GUI 8.00

Affected Versions SAP_SE SAP GUI for Windows BC-FES-GUI 8.00

CWE Classification

CWE-250

AI Assessment

AI Score 4.5 / 10

AI Severity MEDIUM

Vendor SAP

Product SAP GUI for Windows

Version BC-FES-GUI 8.00

References

{
    "lastseen": "",
    "description": "SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths. For a successful attack, the attacker needs developer authorization in a specific Application Server ABAP to make changes in the code, and the victim needs to execute by using SAP GUI for Windows. This could trigger automatic NTLM authentication, potentially exposing hashed credentials to an attacker. As a result, it has a high impact on the confidentiality.",
    "published": "2025-08-12T02:05:44.263Z",
    "modified": "2025-08-12T02:05:44.263Z",
    "type": "cve",
    "title": "Information Disclosure in SAP GUI for Windows",
    "source": "sap",
    "references": "https://me.sap.com/notes/3627845\nhttps://url.sap/sapsecuritypatchday",
    "id": "CVE-2025-42943",
    "bulletinFamily": "",
    "cwe": [
        "CWE-250"
    ],
    "cvelist": null,
    "sourceData": "SAP_SE SAP GUI for Windows BC-FES-GUI 8.00",
    "sourceHref": "",
    "cvss": {
        "score": 4.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SAP GUI for Windows",
    "version": "BC-FES-GUI 8.00",
    "vendor": "SAP_SE",
    "ai_description": "SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths, potentially exposing hashed credentials to an attacker.",
    "ai_severity": "MEDIUM",
    "ai_vendor": "SAP",
    "ai_product": "SAP GUI for Windows",
    "ai_version": "BC-FES-GUI 8.00",
    "ai_score": 4.5
}

💭 Join the Security Discussion ❌ Cancel Reply