CVE-2025-42950
- EPSS 0.06%
- Published 12.08.2025 02:08:36
- Last modified 12.08.2025 14:25:33
SAP Landscape Transformation (SLT) allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC. This flaw enables the injection of arbitrary ABAP code into the system, bypassing essential authorization ch...
CVE-2025-43011
- EPSS 0.05%
- Published 13.05.2025 00:20:02
- Last modified 13.05.2025 19:35:18
Under certain conditions, SAP Landscape Transformation's PCL Basis module does not perform the necessary authorization checks, allowing authenticated users to access restricted functionalities or data. This can lead to a high impact on confidentialit...
CVE-2025-31330
- EPSS 0.08%
- Published 08.04.2025 07:15:13
- Last modified 08.04.2025 18:13:53
SAP Landscape Transformation (SLT) allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC. This flaw enables the injection of arbitrary ABAP code into the system, bypassing essential authorization ch...
- EPSS 0.72%
- Published 14.09.2021 12:15:11
- Last modified 21.11.2024 06:16:34
Due to improper input sanitization, an authenticated user with certain specific privileges can remotely call NZDT function modules listed in Solution Section to execute manipulated query or inject ABAP code to gain access to Backend Database. On succ...