Vulnerability in Sap_se Sap Crm (Webclient Ui)
CVE-2026-44768
SAP CRM WebClient UI allows an attacker to inject and execute malicious scripts in the context of the application due to the absence of a Content Security Policy (CSP) configuration for certain restrictive directives. This vulnerability ha…
CVSS v3 metric
CVSS v3 base score 4.1 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N.
Affected products
- Sap_se Sap Crm (Webclient Ui) — versions S4FND 104, 105, 106
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-44768?
- CVE-2026-44768 is a medium-severity vulnerability in Sap_se Sap Crm (Webclient Ui), classified under CWE-15. CVSS score: 4.1/10. Published 2026-07-14.
- How severe is CVE-2026-44768?
- Medium severity. CVSS v3 base score is 4.1 out of 10.