CVE-2025-31327: OData meta-data property entity tampering in SAP Field Logistics
First published: Tue Apr 22 2025(Updated: )
SAP Field Logistics Manage Logistics application OData meta-data property is vulnerable to data tampering, due to which certain fields could be externally modified by an attacker causing low impact on integrity of the application. Confidentiality and availability are not impacted.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Field Logistics |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2025-31327?
The severity of CVE-2025-31327 is considered low, impacting the integrity of the application.
How do I fix CVE-2025-31327?
Fixing CVE-2025-31327 involves applying the latest patches and updates provided by SAP for Field Logistics.
What specifically is vulnerable in CVE-2025-31327?
CVE-2025-31327 vulnerabilities involve certain OData meta-data properties that can be tampered with, allowing external modifications.
What are the potential impacts of CVE-2025-31327?
The primary impact of CVE-2025-31327 is on the integrity of the data within the application, with confidentiality and availability remaining unaffected.
Who is affected by CVE-2025-31327?
CVE-2025-31327 affects users of the SAP Field Logistics application.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/sap
- canonical/sap field logistics