CNNVD-202511-1292 Information

CNNVD ID

CNNVD-202511-1292

Related CVE

CVE-2025-42899

• CNNVD Published: 2025-11-11

Description (Chinese)

SAP S4CORE是德国思爱普（SAP）公司的一个管理采购合同应用程序。 SAP S4CORE存在安全漏洞，该漏洞源于未对认证用户执行必要授权检查，可能导致权限提升。

Description (English)

SAP S4CORE is a management procurement contract application for SAP, Germany. SAP S4CORE has a security gap, which stems from the failure to carry out the necessary authorization checks for certified users, which may lead to enhanced privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2025-11-11

Last Modified

2026-02-24

References

https://me.sap.com/notes/3530544 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2025-42899

Patch

https://url.sap/sapsecuritypatchday