VDB

CVE-2026-0484

CVE-2026-0484 PUBLISHED CVSS 6.5 MEDIUM

Due to missing authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA, an authenticated attacker could access a specific transaction code and modify the text data in the system. This vulnerability has a high impact on integrity of the application with no effect on the confidentiality and availability.

EPSS 0.01% · 2.7th percentile

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS Score
0.01%
2.7th percentile

Affected Products

VendorProductVersions
sapsap_basis700, 701, 702
SAP_SESAP NetWeaver Application Server ABAP and SAP S/4HANASAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731

Exploit Intelligence

Timeline

  • Feb 10, 2026 CVE Published
  • Feb 10, 2026 EPSS Score
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 16, 2026 EPSS Score
  • Feb 17, 2026 CVE Updated
  • Feb 18, 2026 EPSS Score
  • Feb 20, 2026 EPSS Score
  • Feb 22, 2026 EPSS Score
  • Feb 24, 2026 EPSS Score
  • Feb 26, 2026 EPSS Score
  • Feb 28, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›