Medium severity6.4NVD Advisory· Published Mar 10, 2026· Updated Jun 3, 2026
CVE-2026-24309
CVE-2026-24309
Description
Due to missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker could execute specific ABAP function module to read, modify or insert entries into the database configuration table of the ABAP system. This unauthorized content change could lead to reduced system performance or interruptions. The vulnerability has low impact on the application's integrity and availability, with no effect on confidentiality.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: SAP_BASIS 700
Patches
Vulnerability mechanics
References
2- url.sap/sapsecuritypatchdaynvdVendor Advisory
- me.sap.com/notes/3703856nvdPermissions Required
News mentions
0No linked articles in our index yet.