Primary

Context

SAP NetWeaver Application Server ABAP and SAP S/4HANA Missing Authorization Check Vulnerability Allowing Data Modification

Vulnerability

A vulnerability exists in SAP NetWeaver Application Server ABAP and SAP S/4HANA due to a missing authorization check. This flaw allows an authenticated attacker to access a specific transaction code and alter text data within the system. The vulnerability significantly impacts the application's integrity, with no consequences for confidentiality or availability.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications of text data in the affected system.

Remediation

Users are advised to consult the SAP Security Notes for guidance on applying the necessary patches. SAP Security Notes can be accessed through the SAP for Me platform, specifically on the SAP Security Patch Day.

Added: Feb 10, 2026, 4:47 AM

Updated: Feb 10, 2026, 4:47 AM

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

0.6

exploitability

5.2

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.2

impact

0.6

exploitability

5.2

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP NetWeaver Application Server ABAP and SAP S/4HANA Missing Authorization Check Vulnerability Allowing Data Modification

Vulnerability

Impact

Remediation

Affected Products

SAP NetWeaver Application Server ABAP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating