6.5
/ 10
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Description
SAP Business Planning and Consolidation allows an authenticated standard user to call a function module by crafting specific parameters that causes a loop, consuming excessive resources and resulting in system unavailability. This leads to high impact on the availability of the application, there is no impact on confidentiality or integrity.
Basic Information
ID
CVE-2025-42930
Source
sap
Published
Sep 9, 2025 at 02:11
Affected Product
Vendor
SAP_SE
Product
SAP Business Planning and Consolidation
Version
BPC4HANA 200
Affected Versions
SAP_SE SAP Business Planning and Consolidation BPC4HANA 200
SAP_SE SAP Business Planning and Consolidation 300
SAP_SE SAP Business Planning and Consolidation SAP_BW 750
SAP_SE SAP Business Planning and Consolidation 751
SAP_SE SAP Business Planning and Consolidation 752
SAP_SE SAP Business Planning and Consolidation 753
SAP_SE SAP Business Planning and Consolidation 754
SAP_SE SAP Business Planning and Consolidation 755
SAP_SE SAP Business Planning and Consolidation 756
SAP_SE SAP Business Planning and Consolidation 757
SAP_SE SAP Business Planning and Consolidation 758
SAP_SE SAP Business Planning and Consolidation 816
SAP_SE SAP Business Planning and Consolidation 914
SAP_SE SAP Business Planning and Consolidation CPMBPC 810
SAP_SE SAP Business Planning and Consolidation 300
SAP_SE SAP Business Planning and Consolidation SAP_BW 750
SAP_SE SAP Business Planning and Consolidation 751
SAP_SE SAP Business Planning and Consolidation 752
SAP_SE SAP Business Planning and Consolidation 753
SAP_SE SAP Business Planning and Consolidation 754
SAP_SE SAP Business Planning and Consolidation 755
SAP_SE SAP Business Planning and Consolidation 756
SAP_SE SAP Business Planning and Consolidation 757
SAP_SE SAP Business Planning and Consolidation 758
SAP_SE SAP Business Planning and Consolidation 816
SAP_SE SAP Business Planning and Consolidation 914
SAP_SE SAP Business Planning and Consolidation CPMBPC 810