{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T00:55:10.244","vulnerabilities":[{"cve":{"id":"CVE-2025-0053","sourceIdentifier":"cna@sap.com","published":"2025-01-14T01:15:15.403","lastModified":"2025-10-24T19:24:55.573","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker to gain unauthorized access to system information. By using a specific URL parameter, an unauthenticated attacker could retrieve details such as system configuration. This has a limited impact on the confidentiality of the application and may be leveraged to facilitate further attacks or exploits."},{"lang":"es","value":" SAP NetWeaver Application Server para ABAP y la plataforma ABAP permite a un atacante obtener acceso no autorizado a la información del sistema. Al utilizar un parámetro de URL específico, un atacante no autenticado podría recuperar detalles como la configuración del sistema. Esto tiene un impacto limitado en la confidencialidad de la aplicación y puede aprovecharse para facilitar otros ataques o exploits."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"cna@sap.com","type":"Secondary","description":[{"lang":"en","value":"CWE-209"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:700:*:*:*:*:*:*:*","matchCriteriaId":"85616273-040E-49CB-8EB6-D2D4D7B603E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:701:*:*:*:*:*:*:*","matchCriteriaId":"C5F2C3A9-DCC0-4FF1-8E68-9EA150E209F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:702:*:*:*:*:*:*:*","matchCriteriaId":"6F774A45-2A9F-4873-A5DC-766D030C8CCD"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:731:*:*:*:*:*:*:*","matchCriteriaId":"D3A0A2D6-9259-4A35-A236-F4BEE986C1FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:740:*:*:*:*:*:*:*","matchCriteriaId":"49C3A8E5-FA6A-4EF3-BF50-FD4E1576024F"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:750:*:*:*:*:*:*:*","matchCriteriaId":"ABA8AB4E-3FE6-46A8-847E-660C5DF6CE71"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:751:*:*:*:*:*:*:*","matchCriteriaId":"6DA4A6F0-C0F1-42CB-8BBD-7198064733EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:752:*:*:*:*:*:*:*","matchCriteriaId":"8C121CC9-26F6-4103-8EB0-BAFF6B5B5FE8"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:753:*:*:*:*:*:*:*","matchCriteriaId":"86086D00-10BF-4C55-8D87-82CCBE468153"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:754:*:*:*:*:*:*:*","matchCriteriaId":"2F25246A-D9E5-4F0D-B91A-478D4E5570DB"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:755:*:*:*:*:*:*:*","matchCriteriaId":"0218695F-C4AD-46BF-B176-F10C644A9C2D"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:756:*:*:*:*:*:*:*","matchCriteriaId":"FC9E7C3E-1005-450A-9198-E014C1BAADBC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:sap_basis:757:*:*:*:*:*:*:*","matchCriteriaId":"3A177AB1-CC85-46EF-91DF-462096608C9F"}]}]}],"references":[{"url":"https://me.sap.com/notes/3536461","source":"cna@sap.com","tags":["Permissions Required"]},{"url":"https://url.sap/sapsecuritypatchday","source":"cna@sap.com","tags":["Patch"]}]}}]}