CNNVD-202601-2337 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2337

CVE-2026-0496

  • CNNVD Published: 2026-01-13

Description (Chinese)

SAP Fiori App Intercompany Balance Reconciliation是德国思爱普(SAP)公司的一个财务应用。 SAP Fiori App Intercompany Balance Reconciliation存在代码问题漏洞,该漏洞源于高权限攻击者可在无适当文件格式验证的情况下上传任意文件,对应用程序机密性、完整性和可用性造成低影响。

Description (English)

SAP Fiori App Intercompany Balance Review is a financial application of SAP in Germany. SAP Fiori App Intercompany Balance Reconciliation has a code gap, which stems from the low impact on the confidentiality, integrity and usability of applications that high-authority assailants can upload without proper document format.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

思爱普

Published

2026-01-13

Last Modified

2026-02-24

References

https://me.sap.com/notes/3565506 https://url.sap/sapsecuritypatchday

Patch

https://support.sap.com/en/my-support/knowledge-base/security-notes-news/january-2026.html

Share on: