CNNVD-202512-1496 Information

CNNVD ID

CNNVD-202512-1496

Related CVE

CVE-2025-42875

• CNNVD Published: 2025-12-09

Description (Chinese)

SAP Internet Communication Framework是德国思爱普（SAP）公司的一款 Internet 通信架构。 SAP Internet Communication Framework存在访问控制错误漏洞，该漏洞源于缺少身份验证检查，可能导致授权令牌被重用。

Description (English)

SAP Internet Community Framework is an Internet communications structure of SAP. The SAP Internet Community Platform has an access control error loophole, which stems from the lack of identification checks, which may lead to the reuse of authorized tokens.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

思爱普

Published

2025-12-09

Last Modified

2026-02-24

References

https://me.sap.com/notes/3591163 https://url.sap/sapsecuritypatchday

Patch

https://url.sap/sapsecuritypatchday