Unrated severityNVD Advisory· Published Feb 10, 2026· Updated Feb 10, 2026

Missing Authorization Check in ABAP based SAP systems

CVE-2026-0486

Description

In ABAP based SAP systems a remote enabled function module does not perform necessary authorization checks for an authenticated user resulting in disclosure of system information.This has low impact on confidentiality. Integrity and availability are not impacted.

Affected products

SAP_SE/ABAP based SAP systemsv5
Range: ST-PI 2005_1_700

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

me.sap.com/notes/3691645mitre
url.sap/sapsecuritypatchdaymitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000