CVE-2025-30018 | SAP Supplier Relationship Management 7.14 Live Auction Cockpit xml external entity reference (EUVD-2025-14337)
A vulnerability identified as problematic has been detected in SAP Supplier Relationship Management 7.14. This affects an unknown part of the component Live Auction Cockpit. The manipulation leads to xml external entity reference.
This vulnerability is uniquely identified as CVE-2025-30018. The attack is possible to be carried out remotely. No exploit exists.
To fix this issue, it is recommended to deploy a patch.