CVE-2026-0488

An authenticated attacker in SAP CRM and SAP S/4HANA (Scripting Editor) could exploit a flaw in a generic function module call and execute unauthorized critical functionalities, which includes the ability to execute an arbitrary SQL statement. This leads to a full database compromise with high impact on confidentiality, integrity, and availability.

CVSS v3 9.9 CRITICAL

9.9^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.1 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://me.sap.com/notes/3697099	Permissions Required
https://url.sap/sapsecuritypatchday	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sap:netweaver_application_server_abap:700:::::::*
	cpe:2.3:a:sap:s\/4hana:102:::::::*
	cpe:2.3:a:sap:s\/4hana:103:::::::*
	cpe:2.3:a:sap:s\/4hana:104:::::::*
	cpe:2.3:a:sap:s\/4hana:105:::::::*
	cpe:2.3:a:sap:s\/4hana:106:::::::*
	cpe:2.3:a:sap:s\/4hana:107:::::::*
	cpe:2.3:a:sap:s\/4hana:108:::::::*
	cpe:2.3:a:sap:s\/4hana:109:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:700:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:701:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:730:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:731:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:746:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:747:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:748:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:800:::::::*
	cpe:2.3:a:sap:webclient_ui_framework:801:::::::*

History

No history.

Information

Published : 2026-02-10 04:16

Updated : 2026-02-17 16:10

NVD link : CVE-2026-0488

Mitre link : CVE-2026-0488

CVE.ORG link : CVE-2026-0488

JSON object : View

Products Affected

sap

webclient_ui_framework
s\/4hana
netweaver_application_server_abap

CWE

CWE-862

Missing Authorization

{"id": "CVE-2026-0488", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "cna@sap.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.1}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.1}]}, "published": "2026-02-10T04:16:01.710", "references": [{"url": "https://me.sap.com/notes/3697099", "tags": ["Permissions Required"], "source": "cna@sap.com"}, {"url": "https://url.sap/sapsecuritypatchday", "tags": ["Vendor Advisory"], "source": "cna@sap.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "cna@sap.com", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "An authenticated attacker in SAP CRM and SAP S/4HANA (Scripting Editor) could exploit a flaw in a generic function module call and execute unauthorized critical functionalities, which includes the ability to execute an arbitrary SQL statement. This leads to a full database compromise with high impact on confidentiality, integrity, and availability."}, {"lang": "es", "value": "Un atacante autenticado en SAP CRM y SAP S/4HANA (Editor de scripts) podr\u00eda explotar una vulnerabilidad en una llamada a un m\u00f3dulo de funci\u00f3n gen\u00e9rico y ejecutar funcionalidades cr\u00edticas no autorizadas, lo que incluye la capacidad de ejecutar una sentencia SQL arbitraria. Esto conduce a un compromiso total de la base de datos con alto impacto en la confidencialidad, integridad y disponibilidad."}], "lastModified": "2026-02-17T16:10:03.600", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sap:netweaver_application_server_abap:700:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5A3C915-0E5F-4B1A-B1EB-5ADEA517F620"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:102:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55BACB30-A607-410E-AB05-E991CC19CE12"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95A0C742-4CBD-46B8-B2B3-5949EFC82A6D"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:104:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14A540DA-F234-4EEA-ADE8-4F6306A86C1E"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:105:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "088EF501-76F9-44EC-B8B9-AED6F6096C03"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:106:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0023602-B509-4B20-9B29-20EEE88E1692"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:107:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "489A03BA-B2B1-4271-9A0B-B514051807DF"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:108:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "527C39A2-8777-4334-B4D4-A738442A0FB9"}, {"criteria": "cpe:2.3:a:sap:s\\/4hana:109:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA935EBA-7508-4993-B07A-48EBFB267914"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:700:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E58BF28-5CE1-47C3-8DE3-72BEA73DC3B7"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:701:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFE1D9D8-4942-4F90-AE5C-D82A01917F9D"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:730:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2CC76B6-E96D-42E1-8EA4-38BBBDD1DE2A"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:731:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC693B01-4B67-4A72-A6CB-F090FF95A99B"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:746:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3DF2127-D217-432B-AD0A-3A83DEAA3B04"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:747:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F58D83D4-822A-42FC-841E-43A174AECE85"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:748:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "808207D6-794F-4D38-9E22-233A1E584F75"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:800:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B6E6ECF-6417-4B17-AAB8-1B8D7DB222C7"}, {"criteria": "cpe:2.3:a:sap:webclient_ui_framework:801:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD4F358E-8664-41BE-83B6-5A81FC974F4F"}], "operator": "OR"}]}], "sourceIdentifier": "cna@sap.com"}