CNNVD-202601-2330 Information

CNNVD ID

CNNVD-202601-2330

Related CVE

CVE-2026-0504

• CNNVD Published: 2026-01-13

Description (Chinese)

SAP Identity Management是德国思爱普（SAP）公司的一套能够嵌入到业务流程中的身份管理应用程序。 SAP Identity Management 存在安全漏洞，该漏洞源于输入处理不足，可能导致已验证管理员提交特制恶意REST请求，对数据机密性和完整性造成低影响。

Description (English)

SAP Capacity Management is an identity management application that is embedded in business processes by SAP Germany. There is a security loophole in SAP Infrastructure Management, which stems from inadequate input processing, which may lead to the submission of malpractice RRT requests by certified administrators, with low impact on data confidentiality and integrity.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2026-01-13

Last Modified

2026-02-24

References

https://me.sap.com/notes/3657998 https://url.sap/sapsecuritypatchday

Patch

https://url.sap/sapsecuritypatchday