EUVD-2025-7699

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SAP Just In Time lacks authorization checks, enabling privilege escalation but low impact on integrity.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-26655	11 Mar 202501:41	–	circl
CNNVD	SAP Just In Time 安全漏洞	11 Mar 202500:00	–	cnnvd
CVE	CVE-2025-26655	11 Mar 202500:35	–	cve
Cvelist	CVE-2025-26655 Missing Authorization check in SAP JIT(Outbound)	11 Mar 202500:35	–	cvelist
NCSC	Vulnerabilities fixed in SAP software	11 Mar 202512:20	–	ncsc
NVD	CVE-2025-26655	11 Mar 202501:15	–	nvd
RedhatCVE	CVE-2025-26655	15 Mar 202504:28	–	redhatcve
Vulnrichment	CVE-2025-26655 Missing Authorization check in SAP JIT(Outbound)	11 Mar 202500:35	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "87b37e0d-747d-3276-9ec9-3dfe54144f90",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3411c8cd-9ca0-3820-ac62-6c3964baac6e",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "105"
      },
      {
        "id": "3b8994f9-df7f-33d2-a48c-aa6199fa0de9",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "ECC-DIMP 618"
      },
      {
        "id": "53d0ea79-e752-3982-93c1-2159a5ccca70",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "S4CORE 102"
      },
      {
        "id": "58c4eb1c-95bf-3301-abce-cf2f5a1153d1",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "106"
      },
      {
        "id": "76fafb61-a8d0-3ae7-b1a3-a7d3989ba145",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "107"
      },
      {
        "id": "da63d46a-f8fb-3a94-93b8-b5c666eafc08",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "104"
      },
      {
        "id": "e79cd372-d7c8-3682-a102-83d6c51ffb35",
        "product": {
          "name": "SAP Just In Time"
        },
        "product_version": "103"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3347991
url	www.url.sap/sapsecuritypatchday

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.13.1

EPSS0.00144

SSVC