CVE-2026-23688

SAP Fiori App Manage Service Entry Sheets does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on integrity, confidentiality and availability are not impacted...

CVE-2026-23688

CVE-2026-23688 affects SAP Fiori App Manage Service Entry Sheets. The issue is insufficient authorization checks for an authenticated user, enabling privilege escalation with low impact to integrity; confidentiality and availability are unaffected. CVSS 3.1 vector yields a base score of 4.3 (MEDI...

SAP Fiori app 安全漏洞

The SAP Fiori App is a corporate application developed by the German company SAP. The SAP Fiori App has a security vulnerability, which stems from failing to perform necessary authorization checks on authenticated users, potentially leading to privilege escalation...

CVE-2026-23683

SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has low impact on confidentiality, integrity and availability are not impacted...

CVE-2026-0511

SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has high impact on confidentiality and integrity of the application ,availability is not impacted...

CVE-2026-0495

SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send uploaded files to arbitrary emails which could enable effective phishing campaigns. This has low impact on confidentiality, integrity and availability of the application...

CVE-2026-0496

SAP Fiori App Intercompany Balance Reconciliation is affected. The issue allows an attacker with high privileges to upload arbitrary files (including scripts) due to improper file format validation in the upload mechanism. Impact is described as low for confidentiality, integrity, and availabilit...

CVE-2026-0494 Information Disclosure vulnerability in SAP Fiori App (Intercompany Balance Reconciliation)

Under certain conditions SAP Fiori App Intercompany Balance Reconciliation application allows an attacker to access information which would otherwise be restricted. This has low impact on confidentiality of the application, integrity and availability are not impacted...

CVE-2026-0494

CVE-2026-0494 affects SAP Fiori App Intercompany Balance Reconciliation, where under certain conditions an attacker can access information that should be restricted. The impact is limited to confidentiality (low); no impact on integrity or availability is indicated. Multiple connected sources cor...

SAP Fiori App Intercompany Balance Reconciliation 代码问题漏洞

SAP Fiori App Intercompany Balance Reconciliation is a financial application from SAP, Germany. A code issue vulnerability exists in SAP Fiori App Intercompany Balance Reconciliation, which can be exploited by an attacker with elevated privileges to upload arbitrary files without proper file form...

EUVD-2018-14340

Malware in sbrugna...

CVE-2025-42915

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

CVE-2025-42915 Missing Authorization Check in Fiori app (Manage Payment Blocks)

Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an attacker with basic user privileges to abuse functionalities that should be restricted to specific user groups.This issue could impact both the confidentiality and integrity of the application without...

CVE-2025-42915

CVE-2025-42915 affects the SAP Fiori app Manage Payment Blocks . The root cause is missing authorization checks, permitting an attacker with basic user privileges to abuse functions restricted to specific user groups. Impact is limited to confidentiality and integrity (no availability impact stat...

SAP Fiori Client Code Execution Vulnerability (CNVD-2019-04899)

SAP Fiori Client is a client program from SAP Germany for running the SAP Fiori Launchpad on mobile devices. A code execution vulnerability exists in SAP Fiori Client, which can be exploited by an attacker with the help of a malicious application to execute JavaScript code in the SAP Fiori...

CVE-2018-2474

SAP Fiori 1.0 for SAP ERP HCM Approve Leave Request, version 2 application allows an attacker to trick an authenticated user to send unintended request to the web server. This vulnerability is due to insufficient CSRF protection...