CVE-2025-27430
Server Side Request Forgery (SSRF) in SAP CRM and SAP S/4 HANA (Interaction Center)
Severity Score
3.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
Under certain conditions, an SSRF vulnerability in SAP CRM and SAP S/4HANA (Interaction Center) allows an attacker with low privileges to access restricted information. This flaw enables the attacker to send requests to internal network resources, thereby compromising the application's confidentiality. There is no impact on integrity or availability
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2025-02-25 CVE Reserved
- 2025-03-11 CVE Published
- 2025-03-11 CVE Updated
- 2025-07-11 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-918: Server-Side Request Forgery (SSRF)
CAPEC
References (2)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 200 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "200" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 204 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "204" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 205 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "205" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 206 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "206" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 103 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "103" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 104 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "104" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 105 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "105" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 106 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "106" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 107 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "107" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 108 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "108" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 701 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "701" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 702 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "702" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 712 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "712" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 713 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "713" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 714 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "714" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 701 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "701" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 731 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "731" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 746 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "746" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 747 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "747" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 748 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "748" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 800 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "800" | en |
Affected
| ||||||
| SAP SE Search vendor "SAP SE" | SAP CRM And SAP S/4HANA (Interaction Center) Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" | 801 Search vendor "SAP SE" for product "SAP CRM And SAP S/4HANA (Interaction Center)" and version "801" | en |
Affected
| ||||||