CVE-2026-0512

Name of the Vulnerable Software and Affected Versions SAP Supplier Relationship Management (affected versions not specified)

Description A Cross-Site Scripting (XSS) issue exists in the SICF Handler in SRM Catalog. An unauthenticated attacker can create a malicious URL that, when accessed by a victim, executes malicious content in the victim's browser. This allows the attacker to access and modify information, which impacts the confidentiality and integrity of the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.