CVE-2025-30017
published 2025-04-08CVE-2025-30017: Due to a missing authorization check, an authenticated attacker could upload a file as a template for solution documentation in SAP Solution Manager 7.1. After…
medium4.4CVSS 3.1
AVLACLPRLUINSUCNILAL
Due to a missing authorization check, an authenticated attacker could upload a file as a template for solution documentation in SAP Solution Manager 7.1. After successful exploitation, an attacker can cause limited impact on the integrity and availability of the application.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |
| sap_se | sap_solution_manager | — | — |