CNNVD-202602-1694 Information

CNNVD ID

CNNVD-202602-1694

Related CVE

CVE-2026-24321

• CNNVD Published: 2026-02-10

Description (Chinese)

SAP Commerce Cloud是德国思爱普（SAP）公司的一套基于云的电子商务平台。该产支持销售管理、营销管理、订单管理和运营管理等。 SAP Commerce Cloud存在安全漏洞，该漏洞源于向未经验证的用户公开多个API端点，可能导致敏感信息泄露。

Description (English)

SAP Common Cloud is a cloud-based e-commerce platform for SAP Germany. It supports marketing management, marketing management, order management and operations management, among others. There is a security loophole in SAP Commerce Cloud, which results from the disclosure of multiple API endpoints to uncertified users, which may lead to the disclosure of sensitive information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2026-02-10

Last Modified

2026-02-24

References

https://me.sap.com/notes/3687771 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2026-24321

Patch

https://me.sap.com/notes/3687771