CVE-2026-0496

Medium CVSS: 6.6

SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to upload any file (including script files) without proper file format validation. This has low impact on confidentiality, integrity and availability of the application.

Vendor

Product

CWE

CWE-434

Yayın Tarihi

2026-01-13 02:15:51

Güncelleme

2026-01-13 14:03:18

Source Identifier

cna@sap.com

KEV Date Added

Kategoriler

CWE-434 MEDIUM 2026

Referanslar

https://me.sap.com/notes/3565506 https://url.sap/sapsecuritypatchday