/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- A security scanner reports a CVE vulnerability against a Spring file in the SAP ASE installation
- The threat is raised on Spring core file in RMA directory, the version of the file can vary:
$SYBASE/DM/RMA-16_0/libs/spring/spring-core-5.3.31.jar / spring-core-5.3.39.jar - Is there any impact on ASE or exposure to this issue in ASE from this CVE?
- The following CVEs are covered
- CVE-2024-38819
- CVE-2024-38820
- CVE-2024-38828
- CVE-2025-41242
- CVE-2025-41249
Read more...
Environment
- SAP Adaptive Server Enterprise (ASE) 16.0
- SAP Adaptive Server Enterprise (ASE) 16.1
Product
SAP Adaptive Server Enterprise all versions
Keywords
CVE , Spring Framework vulnerability, ASE vulnerability , Spring , RMA , Replication Server , HADR , spring , core spring core , 2024 38819 , 2024 38820 , 2024 38828 , 2025 41242 , KBA , BC-SYB-ASE , Sybase ASE Database Platform (non Business Suite) , BC-DB-SYB , Business Suite on Adaptive Server Enterprise , Known Error
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)