CNNVD-202601-2341 Information
Jan 13, 2026
cve
CNNVD ID
CNNVD-202601-2341
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
SAP HANA是德国思爱普(SAP)公司的一套高性能的实时数据分析平台。该平台提供数据查询功能,支持用户对查询实时业务数据进行查询和分析。 SAP HANA存在访问控制错误漏洞,该漏洞源于权限提升,可能导致攻击者切换用户并获取管理员访问权限,造成系统完全被破解。
Description (English)
SAP HANA is a high-performance real-time data analysis platform for SAP Germany. The platform provides data queries to support users in searching and analysing real-time operational data. SAP HANA has a bug in access control, which stems from the increase in privileges, which may result in the attackers switching users and gaining administrator access, resulting in the system being completely broken.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
思爱普
Published
2026-01-13
Last Modified
2026-02-24
References
https://me.sap.com/notes/3691059 https://url.sap/sapsecuritypatchday
Patch
https://url.sap/sapsecuritypatchday
Share on: