/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Is SAP ASE impacted by CVE-2025-31672 ?
- Security scanners can raise CVE-2025-3167 on files poi-ooxml-x.y.z.jar and poi-x.y.z.jar in ASE installation
- These files are present in the Work Load Analyzer (WLA) directory with different versions depending on ASE release:
- $SYBASE/WLA/lib/poi-ooxml-4.1.1.jar
$SYBASE/WLA/lib/poi-4.1.1.jar - $SYBASE/WLA/lib/poi-ooxml-5.3.0.jar
$SYBASE/WLA/lib/poi-5.3.0.jar
- $SYBASE/WLA/lib/poi-ooxml-4.1.1.jar
Read more...
Environment
SAP Adaptive Server Enterprise (ASE) 16.0 & 16.1
Product
SAP Adaptive Server Enterprise 16.0 ; SAP Adaptive Server Enterprise 16.0.3 ; SAP Adaptive Server Enterprise 16.0.4 ; SAP Adaptive Server Enterprise 16.1
Keywords
CVE, vulnerabilities, poi-ooxml , poi , poi-ooxml-5.3.0.jar , poi-5.3.0.jar , poi-ooxml-4.1.1.jar , poi-4.1.1.jar , KBA , BC-SYB-ASE , Sybase ASE Database Platform (non Business Suite) , BC-DB-SYB , Business Suite on Adaptive Server Enterprise , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)