Sap_se Sap Netweaver Application Server Abap And Abap Platform

9 CVEs affecting Sap_se Sap Netweaver Application Server Abap And Abap Platform. Latest disclosed: 2026-02-10. Critical: 2, High: 1.

Top CVEs affecting Sap_se Sap Netweaver Application Server Abap And Abap Platform
CVESeverityScorePublishedSummary
CVE-2026-0509Critical9.62026-02-10SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated, low-privileged user to perform background Remote Function Calls without the re…
CVE-2024-33006Critical9.62024-05-14 An unauthenticated attacker can upload a malicious file to the server which when accessed by a victim can allow an attacker to completely compromise system. 
CVE-2026-0506High8.12026-01-13Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to exec…
CVE-2025-31329Medium6.22025-05-13SAP NetWeaver is vulnerable to an Information Disclosure vulnerability caused by the injection of malicious instructions into user configuration settings. An a…
CVE-2025-42969Medium6.12025-07-08SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attacker to inject a malicious script into a dynamically crafted URL. The vic…
CVE-2024-32733Medium6.12024-05-14 Due to missing input validation and output encoding of untrusted data, SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attac…
CVE-2023-41366Medium5.32023-11-14Under certain condition SAP NetWeaver Application Server ABAP - versions KERNEL 722, KERNEL 7.53, KERNEL 7.77, KERNEL 7.85, KERNEL 7.89, KERNEL 7.54, KERNEL 7…
CVE-2024-41734Medium4.32024-08-13Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an authenticated attacker could call an underlying transaction…
CVE-2023-49581Medium4.12023-12-12SAP GUI for Windows and SAP GUI for Java allow an unauthenticated attacker to access information which would otherwise be restricted and confidential. In addit…