Vulnerability-Lookup

CVE-2025-31331 (GCVE-0-2025-31331)

Vulnerability from cvelistv5 – Published: 2025-04-08 07:15 – Updated: 2025-04-08 13:15

Title

Authorization Bypass vulnerability in SAP NetWeaver

Summary

SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality.

Severity

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-863 - Incorrect Authorization

Assigner

sap

References

2 references

URL	Tags
https://me.sap.com/notes/3577131
https://url.sap/sapsecuritypatchday

Impacted products

1 product

Vendor	Product	Version
SAP_SE	SAP NetWeaver	Affected: SAP_ABA 700 Affected: 701 Affected: 702 Affected: 731 Affected: 740 Affected: 750 Affected: 751 Affected: 752 Affected: 75C Affected: 75D Affected: 75E Affected: 75F Affected: 75G Affected: 75H Affected: 75I

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-31331",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-08T13:15:47.307694Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-08T13:15:55.752Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "SAP NetWeaver",
          "vendor": "SAP_SE",
          "versions": [
            {
              "status": "affected",
              "version": "SAP_ABA 700"
            },
            {
              "status": "affected",
              "version": "701"
            },
            {
              "status": "affected",
              "version": "702"
            },
            {
              "status": "affected",
              "version": "731"
            },
            {
              "status": "affected",
              "version": "740"
            },
            {
              "status": "affected",
              "version": "750"
            },
            {
              "status": "affected",
              "version": "751"
            },
            {
              "status": "affected",
              "version": "752"
            },
            {
              "status": "affected",
              "version": "75C"
            },
            {
              "status": "affected",
              "version": "75D"
            },
            {
              "status": "affected",
              "version": "75E"
            },
            {
              "status": "affected",
              "version": "75F"
            },
            {
              "status": "affected",
              "version": "75G"
            },
            {
              "status": "affected",
              "version": "75H"
            },
            {
              "status": "affected",
              "version": "75I"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eSAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality.\u003c/p\u003e"
            }
          ],
          "value": "SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863: Incorrect Authorization",
              "lang": "eng",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-08T07:15:23.750Z",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "url": "https://me.sap.com/notes/3577131"
        },
        {
          "url": "https://url.sap/sapsecuritypatchday"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Authorization Bypass vulnerability in SAP NetWeaver",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2025-31331",
    "datePublished": "2025-04-08T07:15:23.750Z",
    "dateReserved": "2025-03-27T23:02:06.907Z",
    "dateUpdated": "2025-04-08T13:15:55.752Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-31331",
      "date": "2026-06-04",
      "epss": "0.00026",
      "percentile": "0.07753"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-31331\",\"sourceIdentifier\":\"cna@sap.com\",\"published\":\"2025-04-08T08:15:17.977\",\"lastModified\":\"2025-04-08T18:13:53.347\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality.\"},{\"lang\":\"es\",\"value\":\"SAP NetWeaver permite a un atacante eludir las comprobaciones de autorizaci\u00f3n, lo que le permite ver fragmentos de c\u00f3digo ABAP que normalmente requerir\u00edan validaci\u00f3n adicional. Una vez conectado al sistema ABAP, el atacante puede ejecutar una transacci\u00f3n espec\u00edfica que expone c\u00f3digo confidencial del sistema sin la debida autorizaci\u00f3n. Esta vulnerabilidad compromete la confidencialidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"cna@sap.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"cna@sap.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]}],\"references\":[{\"url\":\"https://me.sap.com/notes/3577131\",\"source\":\"cna@sap.com\"},{\"url\":\"https://url.sap/sapsecuritypatchday\",\"source\":\"cna@sap.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-31331\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-08T13:15:47.307694Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-08T13:15:50.951Z\"}}], \"cna\": {\"title\": \"Authorization Bypass vulnerability in SAP NetWeaver\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"SAP_SE\", \"product\": \"SAP NetWeaver\", \"versions\": [{\"status\": \"affected\", \"version\": \"SAP_ABA 700\"}, {\"status\": \"affected\", \"version\": \"701\"}, {\"status\": \"affected\", \"version\": \"702\"}, {\"status\": \"affected\", \"version\": \"731\"}, {\"status\": \"affected\", \"version\": \"740\"}, {\"status\": \"affected\", \"version\": \"750\"}, {\"status\": \"affected\", \"version\": \"751\"}, {\"status\": \"affected\", \"version\": \"752\"}, {\"status\": \"affected\", \"version\": \"75C\"}, {\"status\": \"affected\", \"version\": \"75D\"}, {\"status\": \"affected\", \"version\": \"75E\"}, {\"status\": \"affected\", \"version\": \"75F\"}, {\"status\": \"affected\", \"version\": \"75G\"}, {\"status\": \"affected\", \"version\": \"75H\"}, {\"status\": \"affected\", \"version\": \"75I\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://me.sap.com/notes/3577131\"}, {\"url\": \"https://url.sap/sapsecuritypatchday\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eSAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper authorization. This vulnerability compromises the confidentiality.\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"eng\", \"type\": \"CWE\", \"cweId\": \"CWE-863\", \"description\": \"CWE-863: Incorrect Authorization\"}]}], \"providerMetadata\": {\"orgId\": \"e4686d1a-f260-4930-ac4c-2f5c992778dd\", \"shortName\": \"sap\", \"dateUpdated\": \"2025-04-08T07:15:23.750Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-31331\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-08T13:15:55.752Z\", \"dateReserved\": \"2025-03-27T23:02:06.907Z\", \"assignerOrgId\": \"e4686d1a-f260-4930-ac4c-2f5c992778dd\", \"datePublished\": \"2025-04-08T07:15:23.750Z\", \"assignerShortName\": \"sap\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

WID-SEC-W-2025-1758

Vulnerability from csaf_certbund - Published: 2025-08-11 22:00 - Updated: 2025-09-07 22:00

Summary

SAP Patchday August 2025: Mehrere Schwachstellen

Severity

Kritisch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: SAP stellt unternehmensweite Lösungen für Geschäftsprozesse wie Buchführung, Vertrieb, Einkauf und Lagerhaltung zur Verfügung.

Angriff: Ein Angreifer kann mehrere Schwachstellen in SAP Software ausnutzen, um sich erhöhte Berechtigungen – sogar Administratorrechte – zu verschaffen, beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, Cross-Site-Scripting-Angriffe durchzuführen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen oder andere nicht näher spezifizierte Auswirkungen zu verursachen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2025-0059

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-23194

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-27429

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-31331

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42934

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42935

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42936

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42941

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42942

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42943

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42945

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42946

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42948

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42949

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42950

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42951

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42955

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42957

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42975

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42976

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://support.sap.com/en/my-support/knowledge-b…	external
https://securitybridge.com/blog/critical-sap-s-4h…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "SAP stellt unternehmensweite L\u00f6sungen f\u00fcr Gesch\u00e4ftsprozesse wie Buchf\u00fchrung, Vertrieb, Einkauf und Lagerhaltung zur Verf\u00fcgung.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in SAP Software ausnutzen, um sich erh\u00f6hte Berechtigungen \u2013 sogar Administratorrechte \u2013 zu verschaffen, beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren oder andere nicht n\u00e4her spezifizierte Auswirkungen zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1758 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1758.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1758 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1758"
      },
      {
        "category": "external",
        "summary": "SAP Security Patchday August 2025 vom 2025-08-11",
        "url": "https://support.sap.com/en/my-support/knowledge-base/security-notes-news/august-2025.html"
      },
      {
        "category": "external",
        "summary": "Artikel auf Securitybridge.com vom 2025-09-07",
        "url": "https://securitybridge.com/blog/critical-sap-s-4hana-code-injection-vulnerability-cve-2025-42957/"
      }
    ],
    "source_lang": "en-US",
    "title": "SAP Patchday August 2025: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-09-07T22:00:00.000+00:00",
      "generator": {
        "date": "2025-09-08T07:01:05.065+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-1758",
      "initial_release_date": "2025-08-11T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-08-11T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-09-07T22:00:00.000+00:00",
          "number": "2",
          "summary": "Aktive Ausnutzung gemeldet"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SAP Software",
            "product": {
              "name": "SAP Software",
              "product_id": "T045978",
              "product_identification_helper": {
                "cpe": "cpe:/a:sap:sap:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SAP"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-0059",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-0059"
    },
    {
      "cve": "CVE-2025-23194",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-23194"
    },
    {
      "cve": "CVE-2025-27429",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-27429"
    },
    {
      "cve": "CVE-2025-31331",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-31331"
    },
    {
      "cve": "CVE-2025-42934",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42934"
    },
    {
      "cve": "CVE-2025-42935",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42935"
    },
    {
      "cve": "CVE-2025-42936",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42936"
    },
    {
      "cve": "CVE-2025-42941",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42941"
    },
    {
      "cve": "CVE-2025-42942",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42942"
    },
    {
      "cve": "CVE-2025-42943",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42943"
    },
    {
      "cve": "CVE-2025-42945",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42945"
    },
    {
      "cve": "CVE-2025-42946",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42946"
    },
    {
      "cve": "CVE-2025-42948",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42948"
    },
    {
      "cve": "CVE-2025-42949",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42949"
    },
    {
      "cve": "CVE-2025-42950",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42950"
    },
    {
      "cve": "CVE-2025-42951",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42951"
    },
    {
      "cve": "CVE-2025-42955",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42955"
    },
    {
      "cve": "CVE-2025-42957",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42957"
    },
    {
      "cve": "CVE-2025-42975",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42975"
    },
    {
      "cve": "CVE-2025-42976",
      "product_status": {
        "known_affected": [
          "T045978"
        ]
      },
      "release_date": "2025-08-11T22:00:00.000+00:00",
      "title": "CVE-2025-42976"
    }
  ]
}

WID-SEC-W-2025-2265

Vulnerability from csaf_certbund - Published: 2025-10-13 22:00 - Updated: 2025-10-13 22:00

Summary

SAP Patchday Oktober 2025: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: SAP stellt unternehmensweite Lösungen für Geschäftsprozesse wie Buchführung, Vertrieb, Einkauf und Lagerhaltung zur Verfügung.

Angriff: Ein Angreifer kann mehrere Schwachstellen in SAP Software ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsmaßnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder andere nicht näher spezifizierte Auswirkungen zu erzielen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2025-0059

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-31331

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-31672

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42901

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42902

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42903

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42906

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42908

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42909

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42910

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42937

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42939

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-42944

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-48913

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

CVE-2025-5115

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
SAP Software SAP	`cpe:/a:sap:sap:-`	—

References

3 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://support.sap.com/en/my-support/knowledge-b…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "SAP stellt unternehmensweite L\u00f6sungen f\u00fcr Gesch\u00e4ftsprozesse wie Buchf\u00fchrung, Vertrieb, Einkauf und Lagerhaltung zur Verf\u00fcgung.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in SAP Software ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder andere nicht n\u00e4her spezifizierte Auswirkungen zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2265 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2265.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2265 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2265"
      },
      {
        "category": "external",
        "summary": "SAP Security Patch Day - October 2025 vom 2025-10-13",
        "url": "https://support.sap.com/en/my-support/knowledge-base/security-notes-news/october-2025.html"
      }
    ],
    "source_lang": "en-US",
    "title": "SAP Patchday Oktober 2025: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-10-13T22:00:00.000+00:00",
      "generator": {
        "date": "2025-10-14T09:19:49.103+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2265",
      "initial_release_date": "2025-10-13T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-10-13T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SAP Software",
            "product": {
              "name": "SAP Software",
              "product_id": "T047578",
              "product_identification_helper": {
                "cpe": "cpe:/a:sap:sap:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SAP"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-0059",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-0059"
    },
    {
      "cve": "CVE-2025-31331",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-31331"
    },
    {
      "cve": "CVE-2025-31672",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-31672"
    },
    {
      "cve": "CVE-2025-42901",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42901"
    },
    {
      "cve": "CVE-2025-42902",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42902"
    },
    {
      "cve": "CVE-2025-42903",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42903"
    },
    {
      "cve": "CVE-2025-42906",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42906"
    },
    {
      "cve": "CVE-2025-42908",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42908"
    },
    {
      "cve": "CVE-2025-42909",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42909"
    },
    {
      "cve": "CVE-2025-42910",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42910"
    },
    {
      "cve": "CVE-2025-42937",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42937"
    },
    {
      "cve": "CVE-2025-42939",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42939"
    },
    {
      "cve": "CVE-2025-42944",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-42944"
    },
    {
      "cve": "CVE-2025-48913",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-48913"
    },
    {
      "cve": "CVE-2025-5115",
      "product_status": {
        "known_affected": [
          "T047578"
        ]
      },
      "release_date": "2025-10-13T22:00:00.000+00:00",
      "title": "CVE-2025-5115"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-31331 (GCVE-0-2025-31331)

WID-SEC-W-2025-1758

WID-SEC-W-2025-2265

Tags

Sightings

Nomenclature