CVE-2025-30009 in Supplier Relationship Managementالمعلومات

الملخص

بحسب MITRE • 13/05/2025

he Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated attacker to execute malicious script in the victim�s browser. This vulnerability has low impact on confidentiality and integrity within the scope of that victim�s browser, with no effect on availability of the application

VulDB is the best source for vulnerability data and more expert information about this specific topic.

مسؤول

Sap

حجز

13/03/2025

إفشاء

13/05/2025

الاعتدال

تمت الموافقة

إدخال

VDB-308381

EPSS

0.00255

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!