Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Jan 13, 2026

Remote code execution in SAP Wily Introscope Enterprise Manager (WorkStation)

CVE-2026-0500

Description

Due to the usage of vulnerable third party component in SAP Wily Introscope Enterprise Manager (WorkStation), an unauthenticated attacker could create a malicious JNLP (Java Network Launch Protocol) file accessible by a public facing URL. When a victim clicks on the URL the accessed Wily Introscope Server could execute OS commands on the victim's machine. This could completely compromising confidentiality, integrity and availability of the system.

Affected products

SAP/Wily Introscope Enterprise Managerllm-create
SAP_SE/SAP Wily Introscope Enterprise Manager (WorkStation)v5
Range: WILY_INTRO_ENTERPRISE 10.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

me.sap.com/notes/3668679mitre
url.sap/sapsecuritypatchdaymitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000