CVE-2025-43010

Name of the Vulnerable Software and Affected Versions SAP S/4HANA Cloud Private Edition or on Premise (SCM Master Data Layer (MDL)) (affected versions not specified)

Description The issue allows an authenticated attacker with SAP standard authorization to execute a certain function module remotely and replace arbitrary ABAP programs, including SAP standard programs, due to a lack of input validation and no authorization checks. This has a low impact on confidentiality but a high impact on integrity and availability to the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.