PT-2025-28299 · Sap · Sap Basis

Name of the Vulnerable Software and Affected Versions: SAP BASIS affected versions not specified Description: The issue is caused by a missing authorization check in an obsolete RFC enabled function module. This allows an authenticated low-privileged attacker to call a Remote Function Call RFC,...

CVE-2025-31330

SAP Landscape Transformation SLT allows an attacker with user privileges to exploit a vulnerability in the function module exposed via RFC. This flaw enables the injection of arbitrary ABAP code into the system, bypassing essential authorization checks. This vulnerability effectively functions as...