Vulnerability in Sap_se Nw As Java Ume User Mapping

CVE-2026-0510

The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting User Mapping data. This weakness could allow an attacker with high-privileged access to expl…

EPSS: 0.001 (2.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.0 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2026-0510?
CVE-2026-0510 is a low-severity vulnerability in Sap_se Nw As Java Ume User Mapping, classified under Inadequate Encryption Strength. CVSS score: 3.0/10. Published 2026-01-13.
How severe is CVE-2026-0510?
Low severity. CVSS v3 base score is 3.0 out of 10.