Cybersecurity analysts have outlined two recently-fixed security vulnerabilities in the SAP Graphical User Interface (GUI) designed for Windows and Java. If these flaws had been successfully exploited, they might have allowed attackers to gain access to confidential data under specific circumstances.
The vulnerabilities are identified as CVE-2025-0055 and CVE-2025-0056 (CVSS scores: 6.0) and were addressed by SAP in its January monthly updates.