CVE-2025-27428

Name of the Vulnerable Software and Affected Versions: SAP Solution Manager (affected versions not specified)

Description: The issue is related to a directory traversal vulnerability. An authorized attacker could access critical information by using an RFC enabled function module. If successfully exploited, this could allow the attacker to read files from any managed system connected to SAP Solution Manager, severely impacting confidentiality. There is no observed impact on integrity or availability.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.