CNNVD-202601-2338 Information
CNNVD ID
CNNVD-202601-2338
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
SAP Fiori App Intercompany Balance Reconciliation是德国思爱普(SAP)公司的一个财务应用。 SAP Fiori App Intercompany Balance Reconciliation存在安全漏洞,该漏洞源于高权限攻击者可发送上传文件至任意电子邮件,可能导致有效的钓鱼攻击,对应用程序机密性、完整性和可用性造成低影响。
Description (English)
SAP Fiori App Intercompany Balance Review is a financial application of SAP in Germany. SAP Fiori App Intercompany Balance Reconciliation has a security loophole, which stems from the fact that high-authority attackers can upload files to random e-mails, which can lead to effective fishing attacks, with low impact on the confidentiality, integrity and availability of applications.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
思爱普
Published
2026-01-13
Last Modified
2026-02-24
References
https://me.sap.com/notes/3565506 https://url.sap/sapsecuritypatchday
Patch
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/january-2026.html
Share on: