CVE-2026-0484 — Vulnetix

Try Vulnetix Request Demo

CVE-2026-0484 PUBLISHED CVSS 6.5 MEDIUM

Due to missing authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA, an authenticated attacker could access a specific transaction code and modify the text data in the system. This vulnerability has a high impact on integrity of the application with no effect on the confidentiality and availability.

EPSS 0.01% · 1.6th percentile

Risk Scores

CVSS v3.1

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

EPSS Score

0.01%

1.6th percentile

Affected Products

Vendor	Product	Versions
sap	sap_basis	816, 700, 701
SAP_SE	SAP NetWeaver Application Server ABAP and SAP S/4HANA	SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702

Timeline

Feb 10, 2026 CVE Published
Feb 10, 2026 EPSS Score
Feb 11, 2026 EPSS Score
Feb 13, 2026 EPSS Score
Feb 14, 2026 EPSS Score
Feb 16, 2026 EPSS Score
Feb 17, 2026 EPSS Score
Feb 17, 2026 CVE Updated
Feb 19, 2026 EPSS Score
Feb 20, 2026 EPSS Score
Feb 22, 2026 EPSS Score
Feb 23, 2026 EPSS Score

References

Open in Interactive Console →