Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2026-01-13
CVE-2026-0511 - SAP Fiori App (Intercompany Balance Reconciliation) Plugin
SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has high impact on confidentiality and integrity of the application ,availability is not impacted.
PLUGIN
SAP Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0511
Risk Score
Threat Entry
Updated 2026-01-13
CVE-2026-0496 - SAP Fiori App (Intercompany Balance Reconciliation) Plugin
SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to upload any file (including script files) without proper file format validation. This has low impact on confidentiality, integrity and availability of the application.
PLUGIN
SAP Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0496
Risk Score
Threat Entry
Updated 2026-01-13
CVE-2026-0495 - SAP Fiori App (Intercompany Balance Reconciliation) Plugin
SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send uploaded files to arbitrary emails which could enable effective phishing campaigns. This has low impact on confidentiality, integrity and availability of the application.
PLUGIN
SAP Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0495
Risk Score
Threat Entry
Updated 2026-01-13
CVE-2026-0494 - SAP Fiori App (Intercompany Balance Reconciliation) Plugin
Under certain conditions SAP Fiori App Intercompany Balance Reconciliation application allows an attacker to access information which would otherwise be restricted. This has low impact on confidentiality of the application, integrity and availability are not impacted.
PLUGIN
SAP Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0494
Risk Score
Threat Entry
Updated 2026-01-13
CVE-2026-0493 - SAP Fiori App (Intercompany Balance Reconciliation) Plugin
Due to a Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App Intercompany Balance Reconciliation an attacker could execute state?changing actions using an inappropriate request type, this deviation from expected request semantics may allow an attacker to trigger unintended actions on behalf of an authenticated user causing low impact on integrity of the system. This has no impact on confidentiality and availability.
PLUGIN
SAP Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0493
Risk Score