Vulnerability in Sap_se Nw As Java Ume User Mapping
CVE-2026-0510
The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting User Mapping data. This weakness could allow an attacker with high-privileged access to expl…
EPSS: 0.001 (2.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 3.0 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N.
Affected products
- Sap_se Nw As Java Ume User Mapping — versions ENGINEAPI 7.50, SERVERCORE 7.50, UMEADMIN 7.50
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-0510?
- CVE-2026-0510 is a low-severity vulnerability in Sap_se Nw As Java Ume User Mapping, classified under Inadequate Encryption Strength. CVSS score: 3.0/10. Published 2026-01-13.
- How severe is CVE-2026-0510?
- Low severity. CVSS v3 base score is 3.0 out of 10.