VDB

GCVE-110-NCSC-2025-186

GCVE-110-NCSC-2025-186
Advisory PublishedCVSS 5.4/10
Vulnetix · Advisory published June 10, 2025
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Weaknesses (CWE)

CWE-918Server-Side Request Forgery (SSRF)CWE-862Missing AuthorizationCWE-346Origin Validation ErrorCWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-590Free of Memory not on the Heap

Risk Scores

CVSS 3.1
5.4/10
Medium · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected Products

VendorProductVersionsPlatforms
SAPvers:unknown/710.750
SAPvers:unknown/b1_on_hana 10.0
SAPvers:unknown/105
SAPvers:unknown/702
SAPvers:unknown/107
SAPvers:unknown/754
SAPvers:unknown/7.50
SAPvers:unknown/2025
SAPvers:unknown/753
SAPvers:unknown/752
SAPvers:unknown/9.15
SAPvers:unknown/740
SAPvers:unknown/108
SAPvers:unknown/914
SAPvers:unknown/grcpinwv1100_700
SAPvers:unknown/757
SAPvers:unknown/2027
SAPvers:unknown/701
SAPvers:unknown/s4core104
SAPvers:unknown/sap_bw 750
SAPvers:unknown/sap_basis758
SAPvers:unknown/9.14
SAPvers:unknown/v1100_731
SAPvers:unknown/pi_basis 2006_1_700
SAPvers:unknown/s4core106
SAPvers:unknown/7.89
SAPvers:unknown/758
SAPvers:unknown/enterprise 430
SAPvers:unknown/915
SAPvers:unknown/106
SAPvers:unknown/756
SAPvers:unknown/7.93
SAPvers:unknown/751
SAPvers:unknown/755
SAPvers:unknown/731
SAPvers:unknown/sap-m-bo 10.0

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,096 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›