SAP-3674774 — Vulnetix

SAP-3674774 PUBLISHED

Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform Product: SAP NetWeaver Application Server ABAP and ABAP Platform Version(s): KRNL64NUC 7.22, 7.22EXT, KRNL64UC 7.22, 7.22EXT, 7.53, KERNEL 7.22, 7.53, 7.54, 7.77, 7.89, 7.93, 9.16, 9.18, 9.19 Severity: Critical (CVSS 9.6)

Timeline

Feb 10, 2026 CVE Published

References

Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform advisory
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/february-2026.html advisory
https://www.cve.org/CVERecord?id=CVE-2026-0509 advisory

Open in Interactive Console →