{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T14:52:22.267","vulnerabilities":[{"cve":{"id":"CVE-2026-0493","sourceIdentifier":"cna@sap.com","published":"2026-01-13T02:15:51.420","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Due to a Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App Intercompany Balance Reconciliation an attacker could execute state?changing actions using an inappropriate request type, this deviation from expected request semantics may allow an attacker to trigger unintended actions on behalf of an authenticated user causing low impact on integrity of the system. This has no impact on confidentiality and availability."},{"lang":"es","value":"Debido a una vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en la aplicación SAP Fiori Intercompany Balance Reconciliation, un atacante podría ejecutar acciones que cambian el estado utilizando un tipo de petición inapropiado, esta desviación de la semántica de petición esperada podría permitir a un atacante desencadenar acciones no intencionadas en nombre de un usuario autenticado causando bajo impacto en la integridad del sistema. Esto no tiene impacto en la confidencialidad y disponibilidad."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cna@sap.com","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https://me.sap.com/notes/3655229","source":"cna@sap.com"},{"url":"https://url.sap/sapsecuritypatchday","source":"cna@sap.com"}]}}]}