CVE-2026-0495

Name of the Vulnerable Software and Affected Versions SAP Fiori App Intercompany Balance Reconciliation (affected versions not specified)

Description The application allows an attacker with high privileges to send uploaded files to arbitrary emails, potentially enabling phishing campaigns. The issue has a low impact on the confidentiality, integrity, and availability of the application. The vulnerability involves the ability to send uploaded files via email to unintended recipients.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.