EUVD-2025-20342

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SAP S/4HANA and SAP SCM have a remote code execution vulnerability that risks full system control.

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of the SAP S/4HANA resource planning system and the SAP SCM supply chain management software’s Characteristic Propagation mechanism lies in improper code generation management. This allows attackers to execute arbitrary code and gain unauthorized access to the system.	9 Jul 202500:00	–	bdu_fstec
Circl	CVE-2025-42967	8 Jul 202501:16	–	circl
CNNVD	SAP S/4HANA 安全漏洞	8 Jul 202500:00	–	cnnvd
CVE	CVE-2025-42967	8 Jul 202500:36	–	cve
Cvelist	CVE-2025-42967 Code Injection vulnerability in SAP S/4HANA and SAP SCM (Characteristic Propagation)	8 Jul 202500:36	–	cvelist
NCSC	Vulnerabilities fixed in SAP products	9 Jul 202508:29	–	ncsc
NVD	CVE-2025-42967	8 Jul 202501:15	–	nvd
Positive Technologies	PT-2025-28286 · Sap · Sap S/4Hana +1	8 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-42967	10 Jul 202501:30	–	redhatcve
Vulnrichment	CVE-2025-42967 Code Injection vulnerability in SAP S/4HANA and SAP SCM (Characteristic Propagation)	8 Jul 202500:36	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "3b00b36e-6afc-3bcc-b64c-06d80a380d3d",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "262b8d73-4bd6-34e1-845f-23cee0fa3185",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "712"
      },
      {
        "id": "4158edcb-d0a6-3ac3-a215-421023328c37",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "106"
      },
      {
        "id": "51ba81fd-f63c-395f-9c90-7f595a8ecd60",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "104"
      },
      {
        "id": "556da33e-3ae2-376e-b47d-e33b6bb55f9f",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "702"
      },
      {
        "id": "63ae2994-e2c2-3663-b6ed-8b13520d81b2",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "103"
      },
      {
        "id": "6755b266-624e-3a9a-ad2e-7f1e2c11c636",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "SCM 700"
      },
      {
        "id": "6b2955d5-824f-3751-a821-40a3d86440bc",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "108"
      },
      {
        "id": "800c6492-c46d-38a0-9cc3-77477eed7fe1",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "S4CORE 102"
      },
      {
        "id": "86adab8d-2a12-30d6-b204-8f43bde83a55",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "107"
      },
      {
        "id": "96ba3d73-427a-34cf-9b33-7b8b5c2ad293",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "701"
      },
      {
        "id": "b2c6babf-42fc-324c-bb6b-c4efe0da00a6",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "SCMAPO 713"
      },
      {
        "id": "b698137a-ac20-3af4-9b25-2f15a1f2d1a1",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "S4COREOP 105"
      },
      {
        "id": "e6e56404-6bab-323d-b505-ac03bc1ab2ff",
        "product": {
          "name": "SAP S/4HANA and SAP SCM (Characteristic Propagation)"
        },
        "product_version": "714"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3618955
url	www.url.sap/sapsecuritypatchday

03 Oct 2025 20:07Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.19.9

EPSS0.02095

SSVC