CNNVD-202510-2081 Information

CNNVD ID

CNNVD-202510-2081

Related CVE

CVE-2025-42906

• CNNVD Published: 2025-10-14

Description (Chinese)

SAP Commerce Cloud是德国思爱普（SAP）公司的一套基于云的电子商务平台。该产支持销售管理、营销管理、订单管理和运营管理等。 SAP Commerce Cloud存在路径遍历漏洞，该漏洞源于存在路径遍历漏洞，可能导致绕过访问限制访问管理控制台。

Description (English)

SAP Common Cloud is a cloud-based e-commerce platform for SAP Germany. It supports marketing management, marketing management, order management and operations management, among others. There is a loophole in the SAP Access Club ’ s path, which stems from a loophole that could lead to bypassing the access-restricted access control desk.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

思爱普

Published

2025-10-14

Last Modified

2026-02-24

References

https://url.sap/sapsecuritypatchday https://me.sap.com/notes/3634724 https://access.redhat.com/security/cve/cve-2025-42906

Patch

https://www.sap.com/index.html