Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how sap compares to other vendors in security performance

View Risk Score →

Software

sap netweaver
20
sap netweaver as abap
12
sap businessobjects
10
sap businessobjects business intelligence
10
sap netweaver as for java
10
sap s/4hana
10
sap netweaver solution manager
8
sap businessobjects business intelligence platform
7
sap trex
7
sap hana database
6
sap abap
5
sap netweaver application server abap
5
sap web dispatcher
5
sap business warehouse
4
sap commerce
4
sap commerce cloud
4
sap netweaver java application server
4
sap business one
3
sap cloud connector
3
sap gui
3
sap landscape management
3
sap landscape transformation
3
sap maxdb
3
sap netweaver application server
3
sap netweaver process integration
3
sap simple diagnostics agent
3
sap user interface (ui)
3
sap abap platform
2
sap business one on hana
2
sap business planning and consolidation
2
sap bw/4hana
2
sap content server
2
sap crystal reports
2
sap crystal reports server
2
sap customer relationship management
2
sap hana extended application services
2
sap hana sps09
2
sap internet graphics server
2
sap introscope enterprise manager
2
sap netweaver application server abap kernel
2
sap netweaver application server java
2
sap netweaver as abap kernel
2
sap netweaver development infrastructure
2
sap netweaver enterprise portal administration
2
sap netweaver knowledge management
2
sap point of sale xpress server
2
sap rfc library
2
sap \@sap\/xssec node.js
1
sap abap platform (internet communication framework)
1
sap adaptive server enterprise
1

SAP SAP Commerce CloudMissing authentication check in SAP Commerce cloud configuration

Risk 83
Severity
9.6
First published (updated )
CVE-2026-34263

SAP SAP S/4HANA (SAP Enterprise Search for ABAP)SQL injection vulnerability in SAP S/4HANA (SAP Enterprise Search for ABAP)

Risk 71
Severity
9.6
First published (updated )
CVE-2026-34260

SAP Business Planning and ConsolidationSQL Injection vulnerability in SAP Business Planning and Consolidation and SAP Business Warehouse

Risk 82
Severity
9.9
First published (updated )
CVE-2026-27681

SAP NetWeaver Enterprise Portal AdministrationInsecure Deserialization in SAP NetWeaver Enterprise Portal Administration

Risk 72
Severity
9.1
First published (updated )
CVE-2026-27685

SAP Netweaver As Abap KernelMissing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform

Risk 68
Severity
9.6
First published (updated )
CVE-2026-0509
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP Webclient Ui FrameworkCode Injection vulnerability in SAP CRM and SAP S/4HANA (Scripting Editor)

Risk 82
Severity
9.9
First published (updated )
CVE-2026-0488

SAP S/4HANASQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)

Risk 59
Severity
9.9
EPSS
0.05%
First published (updated )
CVE-2026-0501

SAP Wily Introscope Enterprise Manager (WorkStation)Remote code execution in SAP Wily Introscope Enterprise Manager (WorkStation)

Risk 58
Severity
9.6
EPSS
0.09%
First published (updated )
CVE-2026-0500

SAP S\/4 HanaCode Injection vulnerability in SAP S/4HANA (Private Cloud and On-Premise)

Risk 54
Severity
9.1
EPSS
0.06%
First published (updated )
CVE-2026-0498

SAP SAP Landscape TransformationCode Injection vulnerability in SAP Landscape Transformation

Risk 54
Severity
9.1
EPSS
0.06%
First published (updated )
CVE-2026-0491
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP jConnectDeserialization Vulnerability in SAP jConnect - SDK for ASE

Risk 75
Severity
9.1
First published (updated )
CVE-2025-42928

SAP Solution ManagerCode Injection vulnerability in SAP Solution Manager

Risk 86
Severity
9.9
First published (updated )
CVE-2025-42880

SAP SQL Anywhere Monitor (Non-GUI)Insecure key & Secret Management vulnerability in SQL Anywhere Monitor (Non-Gui)

Risk 90
Severity
10
First published (updated )
CVE-2025-42890

SAP Solution ManagerCode Injection vulnerability in SAP Solution Manager

Risk 86
Severity
9.9
First published (updated )
CVE-2025-42887

SAP Print ServiceDirectory Traversal vulnerability in SAP Print Service

Risk 86
Severity
9.8
First published (updated )
CVE-2025-42937
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP Supplier Relationship ManagementUnrestricted File Upload Vulnerability in SAP Supplier Relationship Management

Risk 74
Severity
9
First published (updated )
CVE-2025-42910

SAP NetWeaverMissing Authentication check in SAP NetWeaver

Risk 78
Severity
9.1
First published (updated )
CVE-2025-42958

SAP NetWeaverInsecure Deserialization vulnerability in SAP Netweaver (RMI-P4)

Risk 93
Severity
10
First published (updated )
CVE-2025-42944

SAP NetWeaver AS JavaInsecure File Operations vulnerability in SAP NetWeaver AS Java (Deploy Web Service)

Risk 88
Severity
9.9
First published (updated )
CVE-2025-42922

SAP S/4HANACode Injection vulnerability in SAP S/4HANA (Private Cloud or On-Premise)

Risk 91
Severity
9.9
First published (updated )
CVE-2025-42957
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP Landscape TransformationCode Injection Vulnerability in SAP Landscape Transformation (Analysis Platform)

Risk 87
Severity
9.9
First published (updated )
CVE-2025-42950

SAP NetWeaver Enterprise PortalInsecure Deserialization in SAP NetWeaver Enterprise Portal Federated Portal Network

Risk 72
Severity
9.1
First published (updated )
CVE-2025-42980

SAP S/4HANACode Injection vulnerability in SAP S/4HANA and SAP SCM (Characteristic Propagation)

Risk 82
Severity
9.9
First published (updated )
CVE-2025-42967

SAP NetWeaver XML Data Archiving ServiceInsecure Deserialization vulnerability in SAP NetWeaver (XML Data Archiving Service)

Risk 72
Severity
9.1
First published (updated )
CVE-2025-42966

SAP NetWeaver Enterprise Portal AdministrationInsecure Deserialization in SAP NetWeaver Enterprise Portal Administration

Risk 72
Severity
9.1
First published (updated )
CVE-2025-42964
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP NetWeaver Application Server for JavaInsecure Deserialization in SAP NetWeaver Application Server for Java (Log Viewer )

Risk 72
Severity
9.1
First published (updated )
CVE-2025-42963

SAP NetWeaver Application Server for ABAPMissing Authorization check in SAP NetWeaver Application Server for ABAP

Risk 71
Severity
9.6
First published (updated )
CVE-2025-42989

SAP NetweaverSAP NetWeaver Deserialization Vulnerability

Risk 79
Severity
9.1
Exploited
Zeroday
EPSS
0.05%
First published (updated )
CVE-2025-42999

SAP Supplier Relationship ManagementMultiple vulnerabilities in SAP Supplier Relationship Management (Live Auction Cockpit)

Risk 87
Severity
10
First published (updated )
CVE-2025-30012

SAP NetWeaverSAP NetWeaver Unrestricted File Upload Vulnerability

Risk 100
Severity
10
Exploited
Zeroday
First published (updated )
CVE-2025-31324
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203