SAP^® and Oracle^® Security Advisories

Onapsis Research Labs is the world’s leading team of security experts who combine their deep knowledge of critical ERP applications and decades of threat research experience to deliver impactful security insights and threat intelligence focused on the business-critical applications from SAP, Oracle, and SaaS providers. Onapsis Research Labs is, far and away, the most prolific and most celebrated contributor of vulnerability research by the SAP Product Security Response Team. No other research team comes close.

SAP Enterprise Extension Defense Forces & Public Security

Medium

08/22/2025

Missing Authorization check in SAP ERP Defence Forces and Public Security

Missing Authorization check in SAP ERP Defence Forces and Public Security Impact on Business Successful attack can lead to discovery assignment between storage location and warehouse number. Vulnerability Details The /ISDFPS/ISDFPS/WM_LES function group, inside the /ISDFPS/MM package, implements a remote-enabled function module called /ISDFPS/GET_LGNUM_RFC which does not make any authorization check. Any user with enough…

Safeguarding Tomorrow: Empowering SAP Customers with Advanced Cyber Risk Management

Securing Your Future: Preparing for a Successful SAP RISE Transformation

Executive Threat Overview: Reported SAP Cyber Attack Severely Impacts Business Operations, Compromises Data at Global Manufacturer

Critical SAP Zero-Day Vulnerability Under Active Exploitation (CVE-2025-31324)

Your S/4HANA Cloud Journey

SAP^® and Oracle^® Security Advisories

Missing Authorization check in SAP ERP Defence Forces and Public Security

SAP® and Oracle® Security Advisories

Missing Authorization check in SAP ERP Defence Forces and Public Security

SAP^® and Oracle^® Security Advisories