Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Jan 13, 2026
Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform
CVE-2026-0506
Description
Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to execute form routines (FORMs) in the ABAP system. Successful exploitation could allow the attacker to write or modify data accessible via FORMs and invoke system functionality exposed via FORMs, resulting in a high impact on integrity and availability, while confidentiality remains unaffected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: SAP_BASIS 700
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.