Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable XML external entity vulnerability exists in the reporting functionality of SAP BPC. A specially crafted XML request can cause an XML external entity to be referenced, resulting in information disclosure and potential denial of service. An attacker can issue authenticated HTTP requests to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Business Planning and Consolidation 安全漏洞
Vulnerability Description
SAP Business Planning and Consolidation(BPC)是德国思爱普(SAP)公司的一套业务规划和整合软件。该软件提供计划、预算和财务整合功能。 SAP BPC中的报告功能存在XNL外部实体注入漏洞。攻击者可通过发送特制的XML请求利用该漏洞泄露信息或可能造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A