Potential information disclosure relating to SAP Customizing, SAP security note 2182842

Description

An attacker can discover information relating to SAP Customizing of SAP Business Applications. This information could be used to allow the attacker to specialize their attacks against SAP Business Applications in different clients or tenants.

Available fix and Supported packages

SAP_BASIS | 731 | 731
SAP_BASIS | 740 | 740

Affected component

CVSS

Score: 0

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2182842

Vahagn Vardanian

Potential information disclosure relating to SAP Customizing, SAP security note 2182842

Description

Available fix and Supported packages

Affected component

CVSS

PoC

URL

TAGS

#Information-disclosure
#SAP-Customizing
#IMG
#&160-client-specified

Explore More

Critical File Upload Vulnerability in SAP NetWeaver AS Java Deploy Service — CVE-2025-42922

SAP Security Patch Day – September 2025

SAP Security Patch Day – August 2025

SAP Security Training – Why Businesses Can’t Ignore It Anymore

Vahagn Vardanian

Potential information disclosure relating to SAP Customizing, SAP security note 2182842

Description

Available fix and Supported packages

Affected component

CVSS

PoC

URL

TAGS

#Information-disclosure#SAP-Customizing#IMG#&160-client-specified

Explore More

Critical File Upload Vulnerability in SAP NetWeaver AS Java Deploy Service — CVE-2025-42922

SAP Security Patch Day – September 2025

SAP Security Patch Day – August 2025

SAP Security Training – Why Businesses Can’t Ignore It Anymore

#Information-disclosure
#SAP-Customizing
#IMG
#&160-client-specified