CNNVD-202602-1706 Information
CNNVD ID
CNNVD-202602-1706
Related CVE
- CNNVD Published: 2026-02-10
Description (Chinese)
SAP BusinessObjects Business Intelligence Platform是德国思爱普(SAP)公司的一款完备的商务分析平台。该平台集市场领先的 SAP 数据整合产品、数据管理产品和商务智能 (BI) 产品于一身,可消除系统集成难题,快速、轻松地部署高性能的商务分析软件。 SAP BusinessObjects Business Intelligence Platform存在输入验证错误漏洞,该漏洞源于高权限攻击者可能在应用程序中插入恶意URL,导致未经验证的重定向和下载恶意内容。
Description (English)
SAP BusinessObjects Business Information Platform is a well-developed business analysis platform of SAP. The platform brings together the market-leading SAP data integration products, data management products and business intelligence (BI) products, which remove system integration challenges and rapidly and easily deploy high-performance business analysis software. SAP BusinessObjects Business Intelligence Platform has an input validation error loophole that stems from the possibility that a high-authority attacker may insert a malicious URL in the application, leading to unverified redirection and downloading of malicious content.
Hazard Level
Medium
Vulnerability Type
输入验证错误
Affected Vendor
思爱普
Published
2026-02-10
Last Modified
2026-02-24
References
https://me.sap.com/notes/3674246 https://url.sap/sapsecuritypatchday https://access.redhat.com/security/cve/cve-2026-0508
Patch
https://me.sap.com/notes/3674246
Share on: