Where
-Infinity
0

Trending

Last week
Last month
Last year

BleepingComputerSAP fixes critical vulnerabilities in Commerce Cloud and S/4HANA

First published (updated )
News
BleepingComputer

SAP S/4HANAMissing Authorization Check in SAP S/4HANA (Private Cloud and On-Premise)

Risk 32
Severity
4.9
First published (updated )
CVE-2026-27673

SAP Webclient Ui FrameworkCode Injection vulnerability in SAP CRM and SAP S/4HANA (Scripting Editor)

Risk 82
Severity
9.9
First published (updated )
CVE-2026-0488

SAP SAP BASISMissing Authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA

Risk 38
Severity
6.5
First published (updated )
CVE-2026-0484

SAP ERP Central ComponentMissing Authorization check in in SAP ERP Central Component and SAP S/4HANA (SAP EHS Management)

Risk 28
Severity
6.4
EPSS
0.06%
First published (updated )
CVE-2026-0503
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S/4HANASQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)

Risk 59
Severity
9.9
EPSS
0.05%
First published (updated )
CVE-2026-0501

SAP S\/4 HanaCode Injection vulnerability in SAP S/4HANA (Private Cloud and On-Premise)

Risk 54
Severity
9.1
EPSS
0.06%
First published (updated )
CVE-2026-0498

SAP S/4HANACode Injection vulnerability in SAP S/4HANA (Private Cloud or On-Premise)

Risk 91
Severity
9.9
First published (updated )
CVE-2025-42957

SAP S/4HANACode Injection vulnerability in SAP S/4HANA and SAP SCM (Characteristic Propagation)

Risk 82
Severity
9.9
First published (updated )
CVE-2025-42967

SAP S/4HANAMissing Authorization Check in SAP S/4HANA (Enterprise Event Enablement)

Risk 57
Severity
6.7
First published (updated )
CVE-2025-42993
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

BleepingComputerSAP fixes suspected NetWeaver zero-day exploited in attacks

Exploited
Zeroday
First published (updated )
News
BleepingComputer

BleepingComputerSAP fixes suspected NetWeaver zero-day exploited in attacks

Exploited
Zeroday
First published (updated )
News
BleepingComputer

SAP S4COREOdata meta-data tampering in SAP S4CORE entity

Risk 16
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2025-31333

SAP S/4HANACode Injection Vulnerability in SAP S/4HANA (Private Cloud or On-Premise)

Risk 100
Severity
9.9
Exploited
Zeroday
First published (updated )
CVE-2025-27429

SAP S\/4 HanaHTTP Verb Tampering in SAP S/4 HANA(Manage Bank Statements)

Risk 27
Severity
5.3
First published (updated )
CVE-2024-45282
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S/4 HANAInformation Disclosure in SAP S/4 HANA (Statutory Reports)

Risk 22
Severity
4.3
First published (updated )
CVE-2024-44121

SAP S4CORE[CVE-2024-37172] Missing Authorization check in SAP S/4HANA Finance (Advanced Payment Management)

Risk 34
Severity
5.4
First published (updated )
CVE-2024-37172

SAP S4coreop[CVE-2024-39592] Missing Authorization check in SAP PDCE

Risk 44
Severity
7.7
First published (updated )
CVE-2024-39592

SAP S\/4 HanaMissing Authorization check in SAP S/4HANA (Manage Incoming Payment Files)

Risk 38
Severity
6.5
First published (updated )
CVE-2024-34691

SAP S/4HANACross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS)

Risk 38
Severity
6.1
First published (updated )
CVE-2024-33002
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4hanaInformation Disclosure Vulnerability in Statutory Reporting

Risk 22
Severity
4.3
First published (updated )
CVE-2023-42475

SAP S\/4hanaMissing Authorization Check In S/4HANA (Manage Withholding Tax Items)

Risk 34
Severity
5.4
First published (updated )
CVE-2023-42473

SAP NetWeaver Application Server ABAPMissing Authorization check in SAP CommonCryptoLib

Risk 86
Severity
9.8
First published (updated )
CVE-2023-40309

SAP S4COREMissing Authorization check in SAP Manage Purchase Contracts App

Risk 34
Severity
5.4
First published (updated )
CVE-2023-40625

SAP S\/4 HanaInsecure Direct Object Reference (IDOR) vulnerability in S4 HANA (Manage checkbook apps)

Risk 27
Severity
5.3
First published (updated )
CVE-2023-41368
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4 HanaExternal Entity Loop vulnerability in SAP S/4HANA (Create Single Payment application)

Risk 22
Severity
4.3
First published (updated )
CVE-2023-41369

SAP NetWeaver Application Server ABAPMemory Corruption vulnerability in SAP CommonCryptoLib

Risk 43
Severity
7.5
First published (updated )
CVE-2023-40308

SAP S\/4hanaURL Redirection vulnerability in SAP S/4HANA (Manage Catalog Items and Cross-Catalog search)

Risk 38
Severity
6.1
First published (updated )
CVE-2023-40306

SAP S4COREImproper Access Control in SAP S/4HANA (Manage Journal Entry Template)

Risk 51
Severity
7.3
First published (updated )
CVE-2023-35870

SAP Vendor Master HierarchyMissing Authorization Check in Vendor Master Hierarchy

Risk 32
Severity
5.5
First published (updated )
CVE-2023-32112
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203