Unrated severityNVD Advisory· Published Feb 10, 2026· Updated Feb 10, 2026
Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform
CVE-2026-0509
Description
SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated, low-privileged user to perform background Remote Function Calls without the required S_RFC authorization in certain cases. This can result in a high impact on integrity and availability, and no impact on the confidentiality of the application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: KRNL64NUC 7.22
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.