Unrated severityNVD Advisory· Published Mar 10, 2026· Updated Mar 11, 2026
Insecure Deserialization in SAP NetWeaver Enterprise Portal Administration
CVE-2026-27685
Description
SAP NetWeaver Enterprise Portal Administration is vulnerable if a privileged user uploads untrusted or malicious content that, upon deserialization, could result in a high impact on the confidentiality, integrity, and availability of the host system.
Affected products
2- SAP_SE/SAP NetWeaver Enterprise Portal Administrationv5Range: EP-RUNTIME 7.50
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.