ГлавнаяУязвимости → CVE-2026-0506
8.1высокая

CVE-2026-0506

Описание

Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to execute form routines (FORMs) in the ABAP system. Successful exploitation could allow the attacker to write or modify data accessible via FORMs and invoke system functionality exposed via FORMs, resulting in a high impact on integrity and availability, while confidentiality remains unaffected.

Затрагиваемое ПО
Sap Netweaver application server abap
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Источники
https://me.sap.com/notes/3688703https://url.sap/sapsecuritypatchday