CNNVD-202510-2076 Information

CNNVD ID

CNNVD-202510-2076

Related CVE

CVE-2025-42939

• CNNVD Published: 2025-10-14

Description (Chinese)

SAP S/4HANA是德国思爱普（SAP）公司的一个基于 SAP HANA 内存数据库系统的的企业资源管理软件。 SAP S/4HANA存在安全漏洞，该漏洞源于缺少授权检查，可能导致攻击者通过篡改请求参数删除共享规则条件，影响应用完整性。

Description (English)

SAP S/4HANA is an enterprise resource management software based on the SAP HANA memory database system of SAP Germany. There is a security gap in SAP S/4HANA, which stems from a lack of authorized inspections, which could lead to an attacker removing the sharing of rules by tampering with the parameters of the request, thereby affecting the integrity of application.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2025-10-14

Last Modified

2026-02-24

References

https://me.sap.com/notes/3625683 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2025-42939

Patch

https://www.sap.com/index.html