EUVD-2025-7778

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Manage Bank Statements in SAP S/4HANA has a vulnerability allowing file upload by attackers.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-27433	11 Mar 202501:41	–	circl
CNNVD	SAP S/4HANA 安全漏洞	11 Mar 202500:00	–	cnnvd
CVE	CVE-2025-27433	11 Mar 202500:38	–	cve
Cvelist	CVE-2025-27433 Broken Access Control vulnerabilities in SAP S/4HANA (Manage Bank Statements)	11 Mar 202500:38	–	cvelist
NCSC	Vulnerabilities fixed in SAP software	11 Mar 202512:20	–	ncsc
NVD	CVE-2025-27433	11 Mar 202501:15	–	nvd
RedhatCVE	CVE-2025-27433	13 Mar 202518:07	–	redhatcve
Vulnrichment	CVE-2025-27433 Broken Access Control vulnerabilities in SAP S/4HANA (Manage Bank Statements)	11 Mar 202500:38	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "a91e5e30-622e-3dee-9295-9e833f594ac8",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6f0f4136-131f-3135-88e9-e39716dbcab5",
        "product": {
          "name": "SAP S/4HANA (Manage Bank Statements)"
        },
        "product_version": "S4CORE 107"
      },
      {
        "id": "c4f96405-c6bf-324f-8558-3566c600174e",
        "product": {
          "name": "SAP S/4HANA (Manage Bank Statements)"
        },
        "product_version": "108"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3565835
url	www.url.sap/sapsecuritypatchday

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.14.3

EPSS0.00034

SSVC