CVE-2025-0069

Name of the Vulnerable Software and Affected Versions SAP Setup (affected versions not specified)

Description The issue is related to a DLL injection vulnerability in SAPSetup, which could allow an attacker with local user privileges or access to a compromised corporate user's Windows account to gain higher privileges. This could enable the attacker to move laterally within the network and further compromise the active directory of a company, leading to a high impact on confidentiality, integrity, and availability of the Windows server. The vulnerability is also associated with an uncontrolled search path element.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.