SAP Fiori App Intercompany Balance Reconciliation File Upload Vulnerability Allowing Arbitrary File Upload
Vulnerability
A vulnerability in the SAP Fiori App Intercompany Balance Reconciliation allows high-privilege attackers to upload any file, including scripts, without proper validation of file formats. This issue has a low impact on the application's confidentiality, integrity, and availability.
Impact
Exploitation of this vulnerability could lead to arbitrary file uploads, including potentially malicious script files.
Remediation
Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform.
Added: Jan 13, 2026, 2:32 AM
Updated: Jan 13, 2026, 2:32 AM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
0.6exploitability
4.8remediation
0.0relevance
2.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.