CNNVD-202507-817 Information
CNNVD ID
CNNVD-202507-817
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
SAP NetWeaver和SAP ABAP Platform都是德国思爱普(SAP)公司的产品。SAP NetWeaver是一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。SAP ABAP Platform是一个基于 ABAP 的 SAP 解决方案。 SAP NetWeaver和SAP ABAP Platform存在安全漏洞,该漏洞源于缺少授权检查,低权限用户可调用RFC。
Description (English)
SAP NetWeaver and SAP AMAP Platform are products of SAP Germany. SAP NetWeaver is a service-oriented, integrated application platform. The platform mainly provides an environment for the development and operation of SAP applications. SAP ABAP Platform is a SAP solution based on ABAP. There is a security loophole in SAP NetWeaver and SAP ABAAP Platform, which results from a lack of authorized inspections and low-authorized users can call RFC.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
思爱普
Published
2025-07-08
Last Modified
2026-02-24
References
https://me.sap.com/notes/3626440 https://url.sap/sapsecuritypatchday
Patch
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/july-2025.html
Share on: