- Description
- Under certain conditions SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework) allows an attacker to access restricted information due to weak access controls. This can have a significant impact on the confidentiality, integrity, and availability of an application
- Source
- cna@sap.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 9.9
- Impact score
- 6
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- cna@sap.com
- CWE-732
- Hype score
- Not currently trending
#Vulnerability #CVE20250061 Critical SAP Flaws Revealed: CVE-2025-0070 and CVE-2025-0066 with CVSS 9.9 Demand Immediate Action https://t.co/IqaexWtlW3
@Komodosec
7 Feb 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📣 SAP Security Patch Day – January 2025 📣 Ocak ayı güvenlik yamaları ile ilgili Sap notları yayınlandı! CVSS skoru 9.9/10 olanlar 3537476 - [CVE-2025-0070] 3550708 - [CVE-2025-0066] #basisci #sap #security #sapbasis #basis #sapsolutions #sapnews #SAPSecurityPatchDay https
@basiscicom
22 Jan 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0066 CVE-2025-0070 Multiple SAP NetWeaver Application Server for ABAP Platforms allowing authenticated attacker to obtain illegitimate access by exploiting improper auth checks, resulting in privilege escalations Base 9.9, Impact 6.0, Network https://t.co/ZQ7rKnnpkJ
@vFeed_IO
22 Jan 2025
80 Impressions
0 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
Security Bulletin: Multiple SAP NetWeaver Vulnerabilities - CVE-2025-0070; CVE-2025-0066; CVE-2025-0063; CVE-2025-0061 - Please update to the latest software versions as listed in the SAP Security Advisory #RedLeggCTI #ThreatIntel #SAP https://t.co/rVIAVTKdSj
@RedLegg
16 Jan 2025
6 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0066, -0070 and other: Multiple vulns in SAP, 2.2 - 9.9 rating 🔥🔥🔥 Several vulns in SAP services for every taste: SQLi, Improper Auth, DLL Hijacking, etc. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/Ug9qKDS5g1 #cybersecurity #vulnerability_map https://
@Netlas_io
15 Jan 2025
710 Impressions
5 Retweets
6 Likes
1 Bookmark
0 Replies
0 Quotes
SAP Güvenlik Açıkları: CVE-2025-0070 ve CVE-2025-0066 – Kritik Düzeyde Tehditler! https://t.co/QZbGuzb34Z
@cyberwebeyeos
14 Jan 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
There is a new vulnerability with elevated criticality in SAP NetWeaver AS for ABAP and ABAP Platform (CVE-2025-0066) https://t.co/gsaqmFot2T
@vuldb
14 Jan 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0066 Under certain conditions SAP NetWeaver AS for ABAP and ABAP Platform (Internet Communication Framework) allows an attacker to access restricted information due to weak … https://t.co/bPNnjOcWdf
@CVEnew
14 Jan 2025
169 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-0066: CRITICAL] Weak access controls in SAP NetWeaver AS for ABAP & ABAP Platform can enable attackers to access restricted information, risking app integrity, confidentiality, and availability.#cybersecurity,#vulnerability https://t.co/oVWlTf10U3 https://t.co/Q9v5k
@CveFindCom
14 Jan 2025
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes