CVE-2026-0505
published 2026-02-10CVE-2026-0505: The BSP applications allow an unauthenticated user to manipulate user-controlled URL parameters that are not sufficiently validated. This could result in…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The BSP applications allow an unauthenticated user to manipulate user-controlled URL parameters that are not sufficiently validated. This could result in unvalidated redirection to attacker-controlled websites, leading to a low impact on confidentiality and integrity, and no impact on the availability of the application.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | document_management_system | — | — |
| sap | erp | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |
| sap_se | sap_document_management_system | — | — |