CNNVD-202601-2327 Information
CNNVD ID
CNNVD-202601-2327
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
SAP NetWeaver是德国思爱普(SAP)公司的一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。 SAP NetWeaver存在加密问题漏洞,该漏洞源于使用过时的加密算法,可能导致高权限攻击者在特定条件下部分泄露敏感信息,对应用程序机密性造成低影响。
Description (English)
SAP NetWeaver is a service-oriented integrated application platform for SAP Germany. The platform mainly provides an environment for the development and operation of SAP applications. SAP NetWeaver has a encryption loophole, which stems from the use of outdated encryption algorithms, which may lead to the partial disclosure of sensitive information by high-authority attackers under certain conditions, with low impact on the confidentiality of applications.
Hazard Level
Critical
Vulnerability Type
加密问题
Affected Vendor
思爱普
Published
2026-01-13
Last Modified
2026-02-24
References
https://me.sap.com/notes/3593356 https://url.sap/sapsecuritypatchday
Patch
https://url.sap/sapsecuritypatchday
Share on: