CSRF in Sap_se Sap Fiori App (Intercompany Balance Reconciliation)
CVE-2026-0493
Due to a Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App Intercompany Balance Reconciliation an attacker could execute state?changing actions using an inappropriate request type, this deviation from expected request semant…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.001 (1.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N.
Affected products
- Sap_se Sap Fiori App (Intercompany Balance Reconciliation) — versions UIAPFI70 500, 600, 700
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-0493?
- CVE-2026-0493 is a medium-severity vulnerability in Sap_se Sap Fiori App (Intercompany Balance Reconciliation), classified under Cross-Site Request Forgery (CSRF). CVSS score: 4.3/10. Published 2026-01-13.
- How severe is CVE-2026-0493?
- Medium severity. CVSS v3 base score is 4.3 out of 10.