Sap_se Sap Approuter
2 CVEs affecting Sap_se Sap Approuter. Latest disclosed: 2026-07-14. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-27690 | Critical | 9.1 | 2026-07-14 | Due to an HTTP Request Smuggling vulnerability in SAP Approuter, an unauthenticated attacker could send a specially crafted HTTP request that leads to request-… |
CVE-2026-44745 | High | 8.1 | 2026-07-14 | SAP Approuter does not properly validate incoming request headers during the OAuth2 login flow under certain configurations. This allows an unauthenticated rem… |