浏览 58+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-23688 | Missing Authorization check in SAP Fiori App (Manage Service Entry Sheets - Lean Services) | SAP_SE | SAP Fiori App (Manage Service Entry Sheets - Lean Services) | Medium | 4.3 | 2026-02-10 03:02:59 | Deep Dive |
| CVE-2026-23683 | Missing Authorization check in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | Medium | 4.3 | 2026-01-27 00:22:13 | Deep Dive |
| CVE-2026-0511 | Multiple vulnerabilities in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | High | 8.1 | 2026-01-13 01:15:51 | Deep Dive |
| CVE-2026-0496 | Multiple vulnerabilities in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | Medium | 6.6 | 2026-01-13 01:13:29 | Deep Dive |
| CVE-2026-0495 | Multiple vulnerabilities in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | Medium | 5.1 | 2026-01-13 01:13:21 | Deep Dive |
| CVE-2026-0494 | Information Disclosure vulnerability in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | Medium | 4.3 | 2026-01-13 01:13:14 | Deep Dive |
| CVE-2026-0493 | Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App (Intercompany Balance Reconciliation) | SAP_SE | SAP Fiori App (Intercompany Balance Reconciliation) | Medium | 4.3 | 2026-01-13 01:13:07 | Deep Dive |
| CVE-2025-11773 | Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO <= 2.4.7 - Missing Authorization to Authenticated (Subscriber+) Contract Address Update | beycanpress | Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO | Medium | 4.3 | 2025-11-21 07:31:58 | Deep Dive |
| CVE-2025-11771 | Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO <= 2.4.7 - Missing Authentication to Unauthenticated Presale Update | beycanpress | Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO | Medium | 5.3 | 2025-11-21 07:31:56 | Deep Dive |
| CVE-2025-42923 | Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App (F4044 Manage Work Center Groups) | SAP_SE | SAP Fiori App (F4044 Manage Work Center Groups) | Medium | 4.3 | 2025-09-09 02:09:48 | Deep Dive |
| CVE-2025-42917 | Missing Authorization check in SAP HCM (Approve Timesheets Fiori 2.0 application) | SAP_SE | SAP HCM (Approve Timesheets Fiori 2.0 application) | Medium | 6.5 | 2025-09-09 02:09:11 | Deep Dive |
| CVE-2025-42914 | Missing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application) | SAP_SE | SAP HCM (My Timesheet Fiori 2.0 application) | Low | 3.1 | 2025-09-09 02:06:24 | Deep Dive |
| CVE-2025-42913 | Missing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application) | SAP_SE | SAP HCM (My Timesheet Fiori 2.0 application) | Low | 3.1 | 2025-09-09 02:06:16 | Deep Dive |
| CVE-2025-42912 | Missing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application) | SAP_SE | SAP HCM (My Timesheet Fiori 2.0 application) | Medium | 6.5 | 2025-09-09 02:06:08 | Deep Dive |
| CVE-2025-42941 | Reverse Tabnabbing vulnerability in SAP Fiori (Launchpad) | SAP_SE | SAP Fiori (Launchpad) | Low | 3.5 | 2025-08-12 02:05:28 | Deep Dive |
| CVE-2025-26660 | Broken Access Control in SAP Fiori apps (Posting Library) | SAP_SE | SAP Fiori apps (Posting Library) | Medium | 4.3 | 2025-03-11 00:36:54 | Deep Dive |
| CVE-2025-25241 | Missing Authorization check in SAP Fiori Apps Reference Library (My Overtime Requests) | SAP_SE | SAP Fiori Apps Reference Library (My Overtime Requests) | Medium | 5.4 | 2025-02-11 00:37:54 | Deep Dive |
| CVE-2025-24867 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence platform (BI Launchpad) | SAP_SE | SAP BusinessObjects Platform (BI Launchpad) | Medium | 6.1 | 2025-02-11 00:35:34 | Deep Dive |
| CVE-2025-23191 | Cache Poisoning through header manipulation vulnerability in SAP Fiori for SAP ERP | SAP_SE | SAP Fiori for SAP ERP | Low | 3.1 | 2025-02-11 00:35:15 | Deep Dive |
| CVE-2024-22133 | Improper Access Control in SAP Fiori Front End Server | SAP_SE | SAP Fiori Front End Server | Medium | 4.6 | 2024-03-12 00:32:51 | Deep Dive |