Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SAP_SE — Vulnerabilities & Security Advisories 527

Browse all 527 CVE security advisories affecting SAP_SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by SAP_SE:SAP BusinessObjects Business Intelligence PlatformSAP NetWeaver Application server for ABAP and ABAP PlatformSAP NetWeaver Application Server for ABAPSAP NetWeaver Application Server ABAPSAP GUI for WindowsSAP NetWeaver Application Server JavaSAP NetWeaver Application Server ABAP and ABAP PlatformSAP Business ConnectorSAP Commerce CloudSAP CRM WebClient UISAP NetWeaver AS ABAP and ABAP PlatformSAP Enable NowSAP Fiori App (Intercompany Balance Reconciliation)SAP Supplier Relationship Management (Live Auction Cockpit)SAP NetWeaver Enterprise PortalSAP NetWeaverSAP Solution ManagerSAP NetWeaver AS JavaSAPCARSAP CommerceSAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML)SAP Business One (SLD)SAP NetWeaver AS for JAVA (Adobe Document Services)SAP HCM (My Timesheet Fiori 2.0 application)SAP Supplier Relationship ManagementSAP CommonCryptoLibSAP BusinessObjects Business Intelligence Platform (Web Intelligence)SAP BusinessObjects Web IntelligenceSAP Cloud ConnectorSAP Financial Consolidation
CVE IDTitleCVSSSeverityPublished
CVE-2025-42924 Open Redirect vulnerabilities in SAP S/4HANA landscape (SAP E-Recruiting BSP) — SAP S/4HANA landscape (SAP E-Recruiting BSP)CWE-601 6.1 Medium2025-11-11
CVE-2025-42919 Information Disclosure vulnerability in SAP NetWeaver Application Server Java — SAP NetWeaver Application Server JavaCWE-22 5.3 Medium2025-11-11
CVE-2025-42899 Missing Authorization check in SAP S4CORE (Manage Journal Entries) — SAP S4CORE (Manage Journal Entries)CWE-862 4.3 Medium2025-11-11
CVE-2025-42897 Information Disclosure vulnerability in SAP Business One (SLD) — SAP Business One (SLD)CWE-522 5.3 Medium2025-11-11
CVE-2025-42895 Code Injection vulnerability in SAP HANA JDBC Client — SAP HANA JDBC ClientCWE-94 6.9 Medium2025-11-11
CVE-2025-42894 Path Traversal vulnerability in SAP Business Connector — SAP Business ConnectorCWE-22 6.8 Medium2025-11-11
CVE-2025-42893 Open Redirect vulnerability in SAP Business Connector — SAP Business ConnectorCWE-601 6.1 Medium2025-11-11
CVE-2025-42892 OS Command Injection vulnerability in SAP Business Connector — SAP Business ConnectorCWE-78 6.8 Medium2025-11-11
CVE-2025-42890 Insecure key & Secret Management vulnerability in SQL Anywhere Monitor (Non-Gui) — SQL Anywhere Monitor (Non-Gui)CWE-798 10.0 Critical2025-11-11
CVE-2025-42889 SQL Injection vulnerability in SAP Starter Solution (PL SAFT) — SAP Starter Solution (PL SAFT)CWE-89 5.4 Medium2025-11-11
CVE-2025-42888 Information Disclosure vulnerability in SAP GUI for Windows — SAP GUI for WindowsCWE-316 5.5 Medium2025-11-11
CVE-2025-42887 Code Injection vulnerability in SAP Solution Manager — SAP Solution ManagerCWE-94 9.9 Critical2025-11-11
CVE-2025-42886 Reflected Cross-Site Scripting (XSS) vulnerability in SAP Business Connector — SAP Business ConnectorCWE-79 6.1 Medium2025-11-11
CVE-2025-42885 Missing authentication in SAP HANA 2.0 (hdbrss) — SAP HANA 2.0 (hdbrss)CWE-306 5.8 Medium2025-11-11
CVE-2025-42884 JNDI Injection vulnerability in SAP NetWeaver Enterprise Portal — SAP NetWeaver Enterprise PortalCWE-943 6.5 Medium2025-11-11
CVE-2025-42883 Insecure File Operations vulnerability in SAP NetWeaver Application Server for ABAP (Migration Workbench) — SAP NetWeaver Application Server for ABAP (Migration Workbench)CWE-434 2.7 Low2025-11-11
CVE-2025-42882 Missing Authorization check in SAP NetWeaver Application Server for ABAP — SAP NetWeaver Application Server for ABAPCWE-862 4.3 Medium2025-11-11
CVE-2025-42939 Missing Authorization Check in SAP S/4HANA (Manage Processing Rules - For Bank Statements) — SAP S/4HANA (Manage Processing Rules - For Bank Statements)CWE-863 4.3 Medium2025-10-14
CVE-2025-42937 Directory Traversal vulnerability in SAP Print Service — SAP Print ServiceCWE-35 9.8 Critical2025-10-14
CVE-2025-42910 Unrestricted File Upload Vulnerability in SAP Supplier Relationship Management — SAP Supplier Relationship ManagementCWE-434 9.0 Critical2025-10-14
CVE-2025-42909 Security Misconfiguration vulnerability in SAP Cloud Appliance Library Appliances — SAP Cloud Appliance Library AppliancesCWE-1004 3.0 Low2025-10-14
CVE-2025-42908 Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver Application Server for ABAP — SAP NetWeaver Application Server for ABAPCWE-352 5.4 Medium2025-10-14
CVE-2025-42906 Directory Traversal vulnerability in SAP Commerce Cloud — SAP Commerce CloudCWE-22 5.3 Medium2025-10-14
CVE-2025-42903 User Enumeration and Sensitive Data Exposure via RFC Function in SAP Financial Service Claims Management — SAP Financial Service Claims ManagementCWE-204 4.3 Medium2025-10-14
CVE-2025-42902 Memory Corruption vulnerability in SAP Netweaver AS ABAP and ABAP Platform — SAP Netweaver AS ABAP and ABAP PlatformCWE-476 5.3 Medium2025-10-14
CVE-2025-42901 Code Injection vulnerability in SAP Application Server for ABAP (BAPI Browser) — SAP Application Server for ABAP (BAPI Browser)CWE-94 5.4 Medium2025-10-14
CVE-2025-42907 Server-Side Request Forgery in SAP BI Platform — SAP BI PlatformCWE-918 4.3 Medium2025-09-23
CVE-2025-42958 Missing Authentication check in SAP NetWeaver — SAP NetWeaverCWE-250 9.1 Critical2025-09-09
CVE-2025-42944 Insecure Deserialization vulnerability in SAP Netweaver (RMI-P4) — SAP Netweaver (RMI-P4)CWE-502 10.0 Critical2025-09-09
CVE-2025-42938 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Platform — SAP NetWeaver ABAP PlatformCWE-79 6.1 Medium2025-09-09

This page lists every published CVE security advisory associated with SAP_SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.