Handling the generated user TMSADM, SAP security note 1488406

Description

This note concerns preventing the misuse of the user account TMSADM.

Available fix and Supported packages

SAP_APPL | 31H | 31I
SAP_APPL | 40A | 40B
SAP_APPL | 45A | 45B
SAP_BASIS | 46A | 46D
SAP_BASIS | 610 | 640
SAP_BASIS | 700 | 702
SAP_BASIS | 710 | 730

Affected component

CVSS

Score: 0

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1488406

TAGS

#Transport-Management-System-security

Explore More

CVE-2025-42944 – Critical Severity Remote Code Execution in SAP NetWeaver RMI-P4

October 14, 2025

Unauthenticated Insecure Deserialization Enabling Complete System Takeover CVSS 10.0 / 10 HotNews Priority No Authentication Remote Code Execution Published: October 14, 2025

CVE-2025-42937 – Critical Directory Traversal Vulnerability in SAP Print Service

October 14, 2025

Unauthenticated Path Traversal Enabling System-Wide File Manipulation CVSS 9.8 HotNews Priority No Authentication Required Published: October 14, 2025 Component: SAPSPRINT 🚨 Maximum

CVE-2025-42910 – Critical Unrestricted File Upload Vulnerability in SAP SRM

October 14, 2025

Deep Analysis of a High-Severity Flaw in SAP Supplier Relationship Management CVSS 9.0 HotNews Priority Published: October 14, 2025 Component: SRMNXP01 🚨

SAP Security Patch Day October 2025 – Critical Updates

October 14, 2025

SAP has released its October 2025 security patch package containing 16 security notes addressing critical vulnerabilities across enterprise SAP environments. This release