SAP NetWeaver Application Server ABAP
0 remedies
cpe:2.3:a:sap:netweaver_application_server_abap:*:*:*:*:*:*:*, +1 more
0 remedies
SAP NetWeaver Application Server ABAP Background Remote Function Call Authorization Vulnerability
Vulnerability
A vulnerability exists in SAP NetWeaver Application Server ABAP and ABAP Platform, allowing authenticated, low-privileged users to execute background Remote Function Calls without the necessary S_RFC authorization in certain situations. This flaw could lead to significant integrity and availability issues, while not affecting the application's confidentiality.
Impact
Exploitation of this vulnerability could result in unauthorized background Remote Function Calls, potentially disrupting application availability and integrity.
Remediation
Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform, specifically on SAP Security Patch Days, which occur on the second Tuesday of each month.
Added: Feb 10, 2026, 5:28 AM
Updated: Feb 10, 2026, 5:28 AM
Vulnerability Rating
Custom Algorithm
spread
6.2impact
5.0exploitability
5.2remediation
0.0relevance
2.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.