MEDIUM SeverityCVSS 3.14.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CVE-2026-40136
Last updated May 12, 2026 · Published May 12, 2026
Description
SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised resulting in a low impact on availability. There is no impact on confidentiality and integrity of the data
Affected products
1 listed- SAP_SE:SAP Financial Consolidation
Mappings
CWE
CWE-404
CAPEC
None listed.
CVE® content © MITRE Corporation. Licensed under the CVE Terms of Use. Terms