Co-founder and CTO of RedRays
A malicious user can trigger functionality in the Signature Service of SAP Billing Consolidation 2.0 SP4 AH without authentication and authorization.
Score: 0
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
https://launchpad.support.sap.com/#/notes/1511782
Discover vulnerabilities through the eyes of an attacker In today’s digital landscape, SAP systems form the backbone of critical business operations for
Advisory ID: REDRAYS-2025-091 CVE ID: CVE-2025-25243 Severity: High (CVSS v3.0: 8.6/10) Affected Product: SAP Supplier Relationship Management (Master Data Management Catalog) Publication
On June 10, 2025, SAP released its monthly Security Patch Day updates, addressing 14 new vulnerabilities across various SAP products and components.
Discover vulnerabilities through the eyes of an attacker In today’s digital landscape, SAP systems form the backbone of critical business operations for
Join “SAP Security Core Concepts and Security Administration” which is part of the Blackhat course series.