CNNVD-202512-1491 Information
CNNVD ID
CNNVD-202512-1491
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
SAP Solution Manager是德国思爱普(SAP)公司的一套集系统监控、SAP支持桌面、自助服务、ASAP实施等多个功能为一体的系统管理平台。该平台可以帮助客户建立SAP解决方案的生命周期管理,并提供系统监控、远程支持服务和SAP产品组件升级等功能。 SAP Solution Manager存在代码注入漏洞,该漏洞源于输入清理不足,可能导致系统完全被控制。
Description (English)
SAP Solutions Manager is a system management platform with multiple functions, such as SAP system monitoring, SAP support desktops, self-service, ASAP implementation, etc. The platform helps clients to develop life-cycle management of SAP solutions and provides systems monitoring, remote support services and the upgrading of SAP product components. SAP Solutions Manager has a code-infusion loophole, which stems from inadequate input clean-up and may result in the system being fully controlled.
Hazard Level
Low
Vulnerability Type
代码注入
Affected Vendor
思爱普
Published
2025-12-09
Last Modified
2026-02-24
References
https://me.sap.com/notes/3685270 https://url.sap/sapsecuritypatchday
Patch
https://url.sap/sapsecuritypatchday
Share on: