CNNVD-202602-1703 Information

CNNVD ID

CNNVD-202602-1703

Related CVE

CVE-2026-23684

• CNNVD Published: 2026-02-10

Description (Chinese)

SAP Commerce Cloud是德国思爱普（SAP）公司的一套基于云的电子商务平台。该产支持销售管理、营销管理、订单管理和运营管理等。 SAP Commerce Cloud存在安全漏洞，该漏洞源于竞争条件，可能导致攻击者向购物车添加产品时创建错误产品值的购物车条目，从而影响数据完整性。

Description (English)

SAP Common Cloud is a cloud-based e-commerce platform for SAP Germany. It supports marketing management, marketing management, order management and operations management, among others. There is a security loophole in SAP Commerce Cloud, which stems from competitive conditions, which may result in an attacker creating a shopping car entry with the wrong product value when adding a product to a shopping car, thereby affecting data integrity.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2026-02-10

Last Modified

2026-02-24

References

https://me.sap.com/notes/3689543 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2026-23684

Patch

https://me.sap.com/notes/3689543