Lucene search
K

4 matches found

NVD
NVD
added 2026/01/13 2:15 a.m.14 views

CVE-2026-0501

Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise Financials General Ledger, an authenticated user could execute crafted SQL queries to read, modify, and delete backend database data. This leads to a high impact on the confidentiality, integrity, and availability of...

9.9CVSS0.00414EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 1:13 a.m.18 views

CVE-2026-0498

CVE-2026-0498 affects SAP S/4HANA (Private Cloud and On-Premise). The vulnerability exists in a function module exposed via RFC, where an attacker with admin privileges can inject arbitrary ABAP code or OS commands, bypassing authorization checks and creating a backdoor that could lead to full sy...

9.1CVSS7AI score0.00409EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/09/09 2:7 a.m.21 views

CVE-2025-42916

CVE-2025-42916 concerns a missing input validation in SAP S/4HANA/ABAP reports that could allow an attacker with high privileges to delete contents of arbitrary database tables not protected by an authorization group. The impact is high on integrity and availability with no confidentiality impact...

8.1CVSS6.4AI score0.00249EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/10 12:0 a.m.5 views

SAP S/4HANA 跨站脚本漏洞

SAP S/4HANA is an enterprise resource management software based on the SAP HANA in-memory database system from SAP, Germany. A cross-site scripting vulnerability exists in SAP S/4HANA that stems from weak coding of user control inputs and e-procurement on SAP S/4HANA that allows the execution of...

6.1CVSS5.3AI score0.00242EPSS
Exploits0References4
Rows per page
Query Builder