CVE-2025-23186
Mixed Dynamic RFC Destination vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP
CVSS Score
8.5
EPSS Score
0.0%
EPSS Percentile
0th
In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call (RFC) request to restricted destinations, which can be used to expose credentials for a remote service. These credentials can then be further exploited to completely compromise the remote service, potentially resulting in a significant impact on the confidentiality, integrity, and availability of the application.
| Vendor | sap_se |
| Product | sap netweaver application server abap |
| Published | Apr 8, 2025 |
| Last Updated | Feb 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for sap_se sap netweaver application server abap
Be the first to know when new high vulnerabilities affecting sap_se sap netweaver application server abap are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Affected Versions
SAP_SE / SAP NetWeaver Application Server ABAP
KRNL64NUC 7.22 7.22EXT KRNL64UC 7.22 7.53 KERNEL 7.22 7.54 7.77 7.89 7.93