CNNVD-202511-1297 Information

CNNVD ID

CNNVD-202511-1297

Related CVE

CVE-2025-42892

• CNNVD Published: 2025-11-11

Description (Chinese)

SAP Business Connector是德国思爱普（SAP）公司的一种中间件。 SAP Business Connector存在操作系统命令注入漏洞，该漏洞源于OS命令注入，可能导致执行任意操作系统命令。

Description (English)

SAP Business Contractor is an intermediate of SAP in Germany. SAP Business Contractor has an operational system command that injects a loophole, which originates from an OS command and may lead to the execution of an arbitrary operating system command.

Hazard Level

High

Vulnerability Type

操作系统命令注入

Affected Vendor

思爱普

Published

2025-11-11

Last Modified

2026-02-24

References

https://me.sap.com/notes/3665900 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2025-42892

Patch

https://url.sap/sapsecuritypatchday