CNNVD-202511-1290 Information

CNNVD ID

CNNVD-202511-1290

Related CVE

CVE-2025-42924

• CNNVD Published: 2025-11-11

Description (Chinese)

SAP S/4HANA是德国思爱普（SAP）公司的一个基于 SAP HANA 内存数据库系统的的企业资源管理软件。 SAP S/4HANA存在输入验证错误漏洞，该漏洞源于攻击者可制作恶意链接，可能导致受害者被重定向到攻击者控制的页面。

Description (English)

SAP S/4HANA is an enterprise resource management software based on the SAP HANA memory database system of SAP Germany. SAP S/4HANA has an input validation error loophole, which stems from the fact that the assailant can create a malicious link that could lead to the victim being redirected to the aggressor-controlled page.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

思爱普

Published

2025-11-11

Last Modified

2026-02-24

References

https://me.sap.com/notes/3642398 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2025-42924

Patch

https://url.sap/sapsecuritypatchday