CVE-2025-42910 | SAP Supplier Relationship Management 150/SRMNXP01 100 unrestricted upload

October 14, 2025 Yanac

A vulnerability described as critical has been identified in SAP Supplier Relationship Management 150/SRMNXP01 100. The affected element is an unknown function. The manipulation results in unrestricted upload.

This vulnerability was named CVE-2025-42910. The attack may be performed from remote. There is no available exploit.

It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More