SAP-3697099 — Vulnetix

SAP-3697099 PUBLISHED

Code Injection vulnerability in SAP CRM and SAP S/4HANA (Scripting Editor) Product: SAP CRM and SAP S/4HANA (Scripting Editor) Version(s): S4FND 102, 103, 104, 105, 106, 107, 108, 109, SAP_ABA 700, WEBCUIF 700, 701, 730, 731, 746, 747, 748, 800, 801 Severity: Critical (CVSS 9.9)

Timeline

Feb 10, 2026 CVE Published

References

Code Injection vulnerability in SAP CRM and SAP S/4HANA (Scripting Editor) advisory
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/february-2026.html advisory
https://www.cve.org/CVERecord?id=CVE-2026-0488 advisory

Open in Interactive Console →