{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T05:21:45.677","vulnerabilities":[{"cve":{"id":"CVE-2026-0513","sourceIdentifier":"cna@sap.com","published":"2026-01-13T02:15:53.957","lastModified":"2026-01-22T18:48:53.343","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Due to an Open Redirect Vulnerability in SAP Supplier Relationship Management (SICF Handler in SRM Catalog), an unauthenticated attacker could craft a malicious URL that, if accessed by a victim, redirects them to an attacker-controlled site.This causes low impact on integrity of the application. Confidentiality and availability are not impacted."},{"lang":"es","value":"Debido a una Vulnerabilidad de Redirección Abierta en SAP Supplier Relationship Management (controlador SICF en el catálogo SRM), un atacante no autenticado podría elaborar una URL maliciosa que, si es accedida por una víctima, la redirige a un sitio controlado por el atacante. Esto causa bajo impacto en la integridad de la aplicación. La confidencialidad y la disponibilidad no tienen impacto."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"cna@sap.com","type":"Primary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:supplier_relationship_management:700:*:*:*:*:*:*:*","matchCriteriaId":"069741F5-9DC2-442A-B48B-B0C68A3A6950"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:supplier_relationship_management:701:*:*:*:*:*:*:*","matchCriteriaId":"0C2110DB-3940-47AF-B878-EB8C6B4E8522"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:supplier_relationship_management:702:*:*:*:*:*:*:*","matchCriteriaId":"292B51A4-91A2-49C7-A31D-C70DEB620FEB"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:supplier_relationship_management:713:*:*:*:*:*:*:*","matchCriteriaId":"D9A86731-3213-4ACD-968E-0EA7BEA1192D"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:supplier_relationship_management:714:*:*:*:*:*:*:*","matchCriteriaId":"EEE98FDD-55FA-4F88-AD58-7FE927129F97"}]}]}],"references":[{"url":"https://me.sap.com/notes/3638716","source":"cna@sap.com","tags":["Permissions Required"]},{"url":"https://url.sap/sapsecuritypatchday","source":"cna@sap.com","tags":["Patch","Vendor Advisory"]}]}}]}