CNNVD-202510-2077 Information

CNNVD ID

CNNVD-202510-2077

Related CVE

CVE-2025-42937

• CNNVD Published: 2025-10-14

Description (Chinese)

SAP Print Service是德国思爱普（SAP）公司的一个打印服务。 SAP Print Service存在安全漏洞，该漏洞源于对用户提供的路径信息验证不足，可能导致未经验证的攻击者遍历父目录并覆盖系统文件，严重影响应用程序的机密性、完整性和可用性。

Description (English)

SAP Prince Service is a printing service for SAP, Germany. SAP Prince Service has a security loophole, which stems from the lack of validation of the user ’ s path information, which could lead to unverified assailants running through parent directories and covering system files, seriously affecting the confidentiality, integrity and availability of applications.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2025-10-14

Last Modified

2026-02-24

References

https://me.sap.com/notes/3630595 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2025-42937

Patch

https://www.sap.com/index.html