Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how sap compares to other vendors in security performance

View Risk Score →

Software

sap netweaver
3
sap netweaver as abap
3
sap 3d visual enterprise viewer
2
sap hana database
2
sap hcm my timesheet fiori
2
sap abap platform
1
sap bank account management
1
sap business one license service api
1
sap businessobjects business intelligence
1
sap cloud connector
1
sap commerce
1
sap customer relationship management
1
sap electronic invoicing for brazil
1
sap enable now
1
sap fiori apps for travel management in sap erp
1
sap hana extended application services
1
sap hana extended application services, advanced model
1
sap identity management
1
sap just in time
1
sap netweaver application server abap
1
sap netweaver application server for abap
1
sap netweaver application server for java
1
sap netweaver application server java
1
sap netweaver as abap kernel
1
sap netweaver as abap krnl64nuc
1
sap netweaver as abap krnl64uc
1
sap netweaver business warehouse
1
sap netweaver developer studio
1
sap netweaver solution manager
1
sap product lifecycle costing client
1
sap s/4hana (learning solution)
1
sap sap landscape transformation
1
sap sapui5
1
sap student life cycle management
1
sap sybase adaptive server enterprise
1
sap sybase unwired platform
1

SAP NetWeaver Application Server ABAPCSS Injection vulnerability in SAP NetWeaver Application Server ABAP

Risk 17
Severity
3.1
First published (updated )
CVE-2026-27680

SAP SAP Landscape TransformationCode Injection vulnerability in SAP Landscape Transformation

Risk 12
Severity
2
First published (updated )
CVE-2026-27675

SAP NetWeaver Application Server for ABAPMissing Authorization check in SAP NetWeaver Application Server for ABAP

Risk 19
Severity
3.5
First published (updated )
CVE-2026-24310

SAP Netweaver As Abap KernelMemory Corruption vulnerability in SAP NetWeaver and ABAP Platform (Application Server ABAP)

Risk 13
Severity
3.1
EPSS
0.01%
First published (updated )
CVE-2026-24320

SAP NetWeaver Application Server JavaCRLF Injection vulnerability in SAP NetWeaver Application Server Java

Risk 13
Severity
3.4
EPSS
0.03%
First published (updated )
CVE-2026-23686
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP NetWeaver Application Server for JavaObsolete Encryption Algorithm Used in NW AS Java UME User Mapping

Risk 12
Severity
3
EPSS
0.01%
First published (updated )
CVE-2026-0510

SAP Identity ManagementInsufficient Input Handling in JNDI Operations of SAP Identity Management

Risk 20
Severity
3.8
EPSS
0.03%
First published (updated )
CVE-2026-0504

SAP NetWeaver Application Server for ABAPInsecure File Operations vulnerability in SAP NetWeaver Application Server for ABAP (Migration Workbench)

Risk 16
Severity
2.7
First published (updated )
CVE-2025-42883

SAP Cloud Appliance LibrarySecurity Misconfiguration vulnerability in SAP Cloud Appliance Library Appliances

Risk 16
Severity
3
First published (updated )
CVE-2025-42909

SAP NetWeaver AS JavaInformation Disclosure due to Outdated OpenSSL Version in SAP NetWeaver AS Java (Adobe Document Service)

Risk 23
Severity
3.4
First published (updated )
CVE-2025-42927
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP HCM My Timesheet FioriMissing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application)

Risk 17
Severity
3.1
First published (updated )
CVE-2025-42914

SAP HCM My Timesheet FioriMissing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application)

Risk 17
Severity
3.1
First published (updated )
CVE-2025-42913

SAP Cloud ConnectorMissing authorization check in SAP Cloud Connector

Risk 19
Severity
3.5
First published (updated )
CVE-2025-42955

SAP Fiori (Launchpad)Reverse Tabnabbing vulnerability in SAP Fiori (Launchpad)

Risk 24
Severity
3.5
First published (updated )
CVE-2025-42941

SAP NetWeaver Application Server JavaInsufficiently Secure Hostname Verification for Outbound TLS Connections in SAP NetWeaver Application Server Java

Risk 19
Severity
3.5
First published (updated )
CVE-2025-42978
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP Netweaver Business WarehouseDenial of service (DOS) in SAP NetWeaver Business Warehouse (CCAW application)

Risk 16
Severity
2.7
First published (updated )
CVE-2025-42954

SAP SAPUI5HTML Injection in Unprotected SAPUI5 applications

Risk 17
Severity
3
First published (updated )
CVE-2025-42990

SAP Electronic Invoicing for BrazilMissing Authorization check in SAP Electronic Invoicing for Brazil (eDocument Cockpit)

Risk 11
Severity
2.4
EPSS
0.02%
First published (updated )
CVE-2025-27432

SAP CRMServer Side Request Forgery (SSRF) in SAP CRM and SAP S/4 HANA (Interaction Center)

Risk 14
Severity
3.5
EPSS
0.03%
First published (updated )
CVE-2025-27430

SAP Just In Time (JIT)Missing Authorization check in SAP JIT(Outbound)

Risk 13
Severity
3.1
EPSS
0.03%
First published (updated )
CVE-2025-26655
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP Fiori for SAP ERPCache Poisoning through header manipulation vulnerability in SAP Fiori for SAP ERP

Risk 13
Severity
3.1
EPSS
0.04%
First published (updated )
CVE-2025-23191

SAP Commerce CloudInformation Disclosure vulnerability in SAP Commerce Cloud

Risk 16
Severity
2.7
First published (updated )
CVE-2024-47577

SAP Product Lifecycle Costing ClientDLL Hijacking vulnerability in SAP Product Lifecycle Costing

Risk 18
Severity
3.3
First published (updated )
CVE-2024-47576

SAP Cash ManagementMissing authorization check in SAP Cash Management (Cash Operations)

Risk 19
Severity
3.5
First published (updated )
CVE-2024-47587

SAP Student Life Cycle ManagementMissing authorization check in SAP Student Life Cycle Management (SLcM)

Risk 14
Severity
2.4
First published (updated )
CVE-2024-45284
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP NetWeaver Application Server ABAPMissing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform

Risk 16
Severity
2.7
First published (updated )
CVE-2024-41728

SAP NetWeaver Application Server ABAPMissing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform

Risk 16
Severity
2.7
First published (updated )
CVE-2024-44114

SAP Bank Account ManagementMissing Authorization check in SAP Bank Account Management

Risk 19
Severity
3.5
First published (updated )
CVE-2024-33000

SAP SAPUI5Client-side script execution vulnerability in SAP UI5(PDFViewer)

Risk 19
Severity
3.5
First published (updated )
CVE-2024-33007

SAP Cloud ConnectorDenial of service (DOS) in SAP Cloud Connector

Risk 19
Severity
3.5
First published (updated )
CVE-2023-49578
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203