Deserialization in Sap_se Sap Change And Transport System Attach Tool (Ctsattach)
CVE-2026-58233
SAP Change and Transport System Attach Tool (ctsattach) allows an authenticated attacker to supply a specially crafted archive file which, when processed by the application�s library, can trigger insecure deserialization and lead to remote…
Vulnerability class: Insecure Deserialization
CVSS v3 metric
CVSS v3 base score 7.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L.
Affected products
- Sap_se Sap Change And Transport System Attach Tool (Ctsattach) — versions CTS_UPLOAD_CLT 1
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-58233?
- CVE-2026-58233 is a high-severity vulnerability in Sap_se Sap Change And Transport System Attach Tool (Ctsattach), classified under Deserialization of Untrusted Data. CVSS score: 7.6/10. Published 2026-07-14.
- How severe is CVE-2026-58233?
- High severity. CVSS v3 base score is 7.6 out of 10.