CNNVD-202602-1702 Information
CNNVD ID
CNNVD-202602-1702
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
SAP NetWeaver是德国思爱普(SAP)公司的一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。 SAP NetWeaver存在代码问题漏洞,该漏洞源于反序列化问题,可能导致经过身份验证的管理员通过本地访问提交特制内容,触发内部逻辑执行中的意外行为,进而导致拒绝服务。
Description (English)
SAP NetWeaver is a service-oriented integrated application platform for SAP Germany. The platform mainly provides an environment for the development and operation of SAP applications. SAP NetWeaver has a code loophole, which stems from a problem of back-sequencing, which may lead to the submission of customized content through local access by an identified administrator, triggering an unintended act of internal logical execution, leading to the denial of services.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
思爱普
Published
2026-02-10
Last Modified
2026-02-24
References
https://url.sap/sapsecuritypatchday https://me.sap.com/notes/3687285 https://access.redhat.com/security/cve/cve-2026-23685
Patch
https://me.sap.com/notes/3687285
Share on: