SAP-3687285 — Vulnetix

SAP-3687285 PUBLISHED

Insecure Deserialization vulnerability in SAP NetWeaver (JMS service) Product: SAP NetWeaver (JMS service) Version(s): J2EE-FRMW 7.50 Severity: Medium (CVSS 4.4)

Timeline

Feb 10, 2026 CVE Published

References

Insecure Deserialization vulnerability in SAP NetWeaver (JMS service) advisory
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/february-2026.html advisory
https://www.cve.org/CVERecord?id=CVE-2026-23685 advisory

Open in Interactive Console →