CVE-2025-42939

SAP S/4HANA Manage Processing Rules - For Bank Statements allows an authenticated attacker with basic privileges to delete conditions from any shared rule of any user by tampering the request parameter. Due to missing authorization check, the attacker can delete shared rule conditions that should...

CVE-2025-42987

SAP Manage Processing Rules For Bank Statement allows an attacker with basic privileges to edit shared rules of any user by tampering the request parameter. Due to missing authorization check, the attacker can edit rules that should be restricted, compromising the integrity of the application...

PT-2025-24589 · Sap · Sap Manage Processing Rules

Name of the Vulnerable Software and Affected Versions: SAP Manage Processing Rules For Bank Statement affected versions not specified Description: The issue allows an attacker with basic privileges to edit shared rules of any user by tampering with the request parameter. This is due to a missing...

SAP Manage Processing Rules 安全漏洞

SAP is enterprise applications, enterprise resource management applications, supply chain management applications, procurement applications, travel and expense management software. An authorization issue vulnerability exists in SAP Manage Processing Rules, which stems from insufficient...