CNNVD-202601-2328 Information

CNNVD ID

CNNVD-202601-2328

Related CVE

CVE-2026-0507

• CNNVD Published: 2026-01-13

Description (Chinese)

SAP Application Server for ABAP是德国思爱普（SAP）公司的一个负载均衡、内存管理平台。 SAP Application Server for ABAP存在操作系统命令注入漏洞，该漏洞源于OS命令注入，可能导致已验证攻击者上传特制内容并执行任意操作系统命令，造成系统完全被破解。

Description (English)

SAP Application Server for ABAP is a load-balanced, memory management platform for SAP Germany. SAP Application Server for AMAP has an operational system command leak, which originates from an OS command injection, which may result in the verification of the attacker’s uploading of special content and the execution of arbitrary operating system orders, resulting in the system being completely decrypted.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

思爱普

Published

2026-01-13

Last Modified

2026-02-24

References

https://me.sap.com/notes/3675151 https://url.sap/sapsecuritypatchday

Patch

https://url.sap/sapsecuritypatchday