- Description
- SAP S/4HANA Cloud Private Edition or on Premise (SCM Master Data Layer (MDL)) allows an authenticated attacker with SAP standard authorization to execute a certain function module remotely and replace arbitrary ABAP programs, including SAP standard programs. This is due to lack of input validation and no authorization checks. This has low Confidentiality impact but high impact on integrity and availability to the application.
- Source
- cna@sap.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 8.3
- Impact score
- 5.5
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
- Severity
- HIGH
- cna@sap.com
- CWE-94
- Hype score
- Not currently trending
CVE-2025-43010 (CVSS:8.3, HIGH) is Awaiting Analysis. SAP S/4HANA Cloud Private Edition or on Premise (SCM Master Data Layer (MDL)) allows an authenticated attacker with SAP ..https://t.co/VU7acm24KV #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
18 May 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️Actualización de seguridad de SAP ❗CVE-2025-42999 ❗CVE-2025-30018 ❗CVE-2025-43010 ❗CVE-2025-43000 ❗CVE-2025-43011 ➡️Más info: https://t.co/FYfAYEsdyL https://t.co/PRTHNHg1wY
@CERTpy
13 May 2025
127 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-43010 SAP S/4HANA Cloud Private Edition or on Premise (SCM Master Data Layer (MDL)) allows an authenticated attacker with SAP standard authorization to execute a certain fu… https://t.co/F1vdPbLrSm
@CVEnew
13 May 2025
351 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-43010: HIGH] SAP S/4HANA faces a critical security flaw allowing attackers to execute code remotely and replace programs due to weak validation, posing integrity and availability risks.#cve,CVE-2025-43010,#cybersecurity https://t.co/HJLwIpT8vZ https://t.co/Pm878Q9VhA
@CveFindCom
13 May 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes