CNNVD-202601-2333 Information

CNNVD ID

CNNVD-202601-2333

Related CVE

CVE-2026-0500

• CNNVD Published: 2026-01-13

Description (Chinese)

SAP Wily Introscope Enterprise Manager是德国思爱普（SAP）公司的一个应用性能管理组件。 SAP Wily Introscope Enterprise Manager存在代码注入漏洞，该漏洞源于使用易受攻击的第三方组件，可能导致未经验证的攻击者创建恶意JNLP文件并执行OS命令，造成系统完全被破解。

Description (English)

SAP Wily Introscope Enterprise Manager is an application performance management component of SAP, Germany. SAP Wily Introscope Enterprise Manager has a code-infusion loophole, which stems from the use of vulnerable third-party components and could lead to unverified assailants creating malicious JNLP files and implementing OS orders, resulting in the system being completely decrypted.

Hazard Level

Low

Vulnerability Type

代码注入

Affected Vendor

思爱普

Published

2026-01-13

Last Modified

2026-02-24

References

https://me.sap.com/notes/3668679 https://url.sap/sapsecuritypatchday

Patch

https://url.sap/sapsecuritypatchday