 (2).jpg)
4 weeks ago
9
HI Team ,
SAP Has released 1 SAP Security Note 3537476 - [CVE-2025-0070] Improper Authentication successful SAP NetWeaver ABAP Server and ABAP Platform of Very High Priority but details are not wide to america for appraisal to find the impact.
SAP Note notation that "A malicious idiosyncratic is capable to bargain credentials from an interior RFC connection betwixt server A (HTTP client) and server B (serving the request) of the aforesaid system" of HTTP Call.
So our knowing is that if we person immoderate HTTP RFC Destination from ABAP to ABAP strategy past lone this Note is applicable. ABAP to ABAP HTTP Connection could beryllium either for aforesaid strategy oregon for different ABAP system. I americium asking this query due to the fact that successful our Landscape we don't person immoderate HTTP ABAP RFC Destination created for ABAP to ABAP system, truthful is our strategy impacted oregon not of the supra Security Note mention. Kindly Help.
------------------------------------------------------------------------------------------------------------------------------------------------
Learn much astir the SAP Support idiosyncratic and programme here.
