CVE-2025-42952

Name of the Vulnerable Software and Affected Versions: SAP Business Warehouse and SAP Plug-In Basis (affected versions not specified)

Description: The issue allows an authenticated attacker to add fields to arbitrary SAP database tables and/or structures, potentially rendering the system unusable. On successful exploitation, an attacker can trigger short dumps on login, causing a high impact on availability. Data confidentiality and integrity are not affected, as no data can be read, changed, or deleted.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.