ГлавнаяУязвимости → CVE-2026-0509
9.6критическая

CVE-2026-0509

Описание

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated, low-privileged user to perform background Remote Function Calls without the required S_RFC authorization in certain cases. This can result in a high impact on integrity and availability, and no impact on the confidentiality of the application.

Затрагиваемое ПО
Sap Netweaver as abap kernelSap Netweaver as abap krnl64nucSap Netweaver as abap krnl64uc
CVSS
Балл9.6 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H
Источники
https://me.sap.com/notes/3674774https://url.sap/sapsecuritypatchday