CNNVD-202507-801 Information
CNNVD ID
CNNVD-202507-801
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
SAP Business Warehouse是德国思爱普(SAP)公司的用于执行业务流程的关键组件,它允许用户设计、实施和管理业务流程,确保流程的合规性,并通过自动化减少手动操作的需要。 SAP Business Warehouse存在跨站脚本漏洞,该漏洞源于攻击者可创建恶意链接,当用户点击时可能导致浏览器执行脚本。
Description (English)
SAP Business Warehouse, a key component of SAP in Germany for the implementation of business processes, allows users to design, implement and manage business processes, ensures process compliance and reduces the need for manual operations through automation. SAP Business Warehouse has a cross-site script loophole, which stems from the fact that the assailant can create a malicious link that could lead to a browser executing script when the user clicks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
思爱普
Published
2025-07-08
Last Modified
2026-02-24
References
https://me.sap.com/notes/3604212 https://url.sap/sapsecuritypatchday
Patch
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/july-2025.html
Share on: