ABAP

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-44751	SAP ABAP	Hig	0.46	7.1	—		Jun 9, 2026	Application server ABAP does not perform necessary authorization checks for an authenticated user allowing an attacker to execute a report generation command which could overwrite information belonging to another user, resulting in escalation of privileges. This has high impact…
CVE-2023-25615	SAP ABAP		0.00	—	0.01		Mar 14, 2023	Due to insufficient input sanitization, SAP ABAP - versions 751, 753, 753, 754, 756, 757, 791, allows an authenticated high privileged user to alter the current session of the user by injecting the malicious database queries over the network and gain access to the unintended…

CVE-2026-44751HigJun 9, 2026
SAP
ABAP
risk 0.46cvss 7.1epss —
Application server ABAP does not perform necessary authorization checks for an authenticated user allowing an attacker to execute a report generation command which could overwrite information belonging to another user, resulting in escalation of privileges. This has high impact…
CVE-2023-25615Mar 14, 2023
SAP
ABAP
risk 0.00cvss —epss 0.01
Due to insufficient input sanitization, SAP ABAP - versions 751, 753, 753, 754, 756, 757, 791, allows an authenticated high privileged user to alter the current session of the user by injecting the malicious database queries over the network and gain access to the unintended…