35 matches found
CVE-2026-23688
SAP Fiori App Manage Service Entry Sheets does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on integrity, confidentiality and availability are not impacted...
CVE-2026-23688
SAP Fiori App Manage Service Entry Sheets does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on integrity, confidentiality and availability are not impacted...
CVE-2026-23688 Missing Authorization check in SAP Fiori App (Manage Service Entry Sheets - Lean Services)
SAP Fiori App Manage Service Entry Sheets does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on integrity, confidentiality and availability are not impacted...
CVE-2026-23688 Missing Authorization check in SAP Fiori App (Manage Service Entry Sheets - Lean Services)
SAP Fiori App Manage Service Entry Sheets does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on integrity, confidentiality and availability are not impacted...
CVE-2026-0494
Under certain conditions SAP Fiori App Intercompany Balance Reconciliation application allows an attacker to access information which would otherwise be restricted. This has low impact on confidentiality of the application, integrity and availability are not impacted...
CVE-2026-0495
SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send uploaded files to arbitrary emails which could enable effective phishing campaigns. This has low impact on confidentiality, integrity and availability of the application...
CVE-2026-0511
SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has high impact on confidentiality and integrity of the application ,availability is not impacted...
CVE-2026-0511
The CVE-2026-0511 issue affects SAP Fiori App Intercompany Balance Reconciliation. The vulnerability is due to missing authorization checks for an authenticated user, enabling privilege escalation. Impact is high on confidentiality and integrity; availability is not affected. The issue is corrobo...
CVE-2026-0511 Multiple vulnerabilities in SAP Fiori App (Intercompany Balance Reconciliation)
SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has high impact on confidentiality and integrity of the application ,availability is not impacted...
CVE-2026-0496 Multiple vulnerabilities in SAP Fiori App (Intercompany Balance Reconciliation)
SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to upload any file including script files without proper file format validation. This has low impact on confidentiality, integrity and availability of the application...
CVE-2026-0495
CVE-2026-0495 affects SAP Fiori App Intercompany Balance Reconciliation. A high-privilege attacker can cause the application to send uploaded files to arbitrary email addresses, enabling phishing campaigns. Impact on confidentiality, integrity and availability is described as low. The provided do...
CVE-2026-0493
CVE-2026-0493 describes a Cross-Site Request Forgery in the SAP Fiori App Intercompany Balance Reconciliation. The issue could allow an attacker to trigger state-changing actions on behalf of an authenticated user by using an inappropriate request type, with low impact on integrity and no impact ...
CVE-2026-0493 Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App (Intercompany Balance Reconciliation)
Due to a Cross-Site Request Forgery CSRF vulnerability in SAP Fiori App Intercompany Balance Reconciliation an attacker could execute state?changing actions using an inappropriate request type, this deviation from expected request semantics may allow an attacker to trigger unintended actions on...
SAP Fiori App Intercompany Balance Reconciliation 安全漏洞
SAP Fiori App Intercompany Balance Reconciliation is a financial application from SAP, Germany. A security vulnerability exists in SAP Fiori App Intercompany Balance Reconciliation that stems from a failure to perform required authorization checks on authenticated users, which could result in...
SAP Fiori App Intercompany Balance Reconciliation 安全漏洞
SAP Fiori App Intercompany Balance Reconciliation is a financial application from SAP, Germany. A security vulnerability exists in SAP Fiori App Intercompany Balance Reconciliation, which originates from an elevated-privilege attacker being able to send an uploaded file to an arbitrary email, whi...
SAP Fiori App Intercompany Balance Reconciliation 跨站请求伪造漏洞
SAP Fiori App Intercompany Balance Reconciliation is a financial application from SAP, Germany. A cross-site request forgery vulnerability exists in SAP Fiori App Intercompany Balance Reconciliation, which originates from a cross-site request forgery and could allow an attacker to perform a state...
PT-2026-2332
Name of the Vulnerable Software and Affected Versions SAP Fiori App Intercompany Balance Reconciliation affected versions not specified Description The application allows an attacker with high privileges to upload any file, including script files, without proper file format validation. This has a...
SAP Fiori App Intercompany Balance Reconciliation 安全漏洞
SAP Fiori App Intercompany Balance Reconciliation is a financial application from SAP, Germany. A security vulnerability exists in SAP Fiori App Intercompany Balance Reconciliation, which arises from the ability to access restricted information under certain conditions, causing a low impact on...
PT-2026-2343
Name of the Vulnerable Software and Affected Versions SAP Fiori App Intercompany Balance Reconciliation affected versions not specified Description The SAP Fiori App Intercompany Balance Reconciliation does not implement proper authorization checks for authenticated users, potentially allowing fo...
EUVD-2023-24092
Malicious code in bioql PyPI...