Primary

Context

SAP GUI for Windows DLL Loading Vulnerability Allowing Code Execution via GuiXT

Vulnerability

A vulnerability in SAP GUI for Windows allows dynamic link library (DLL) files to be loaded from arbitrary directories within the application. An unauthenticated attacker could exploit this by convincing a victim to place a malicious DLL in one of these directories. If GuiXT is enabled, the executed command would run in the context of the victim user. This vulnerability has a low impact on confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution in the context of the user.

Remediation

Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform.

Added: Mar 10, 2026, 5:42 PM

Updated: Mar 10, 2026, 5:42 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

4.2

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

4.2

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP GUI for Windows DLL Loading Vulnerability Allowing Code Execution via GuiXT

Vulnerability

Impact

Remediation

Affected Products

SAP GUI for Windows

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating