We've created the first of its kind, SecurityBridge Cloud Platform, designed to prioritize SAP patches, updates, and remediation strategies that help prevent disruptions to critical business systems. Our security advisories provide SAP users with valuable insights into the security and business implications of operating SAP.

The user interface is designed to be as intuitive as possible, but we’d love to hear your feedback and suggestions.

×

Yikes, there is work to do!
This time we found critical correction advisiories. We count 6 and the highest CVSS score is 10.0.

 

Severity
SAP© Security advisories 6
 System Types
Affected SAP© system types

 

3747787
CVSS
10.0

Affected system type BTP
Patchday 2026-06
Released on 2026/04/29
Description 3747787 - Malicious open-source packages in SAP Cloud Application Programming Model & MTA Build Tool
3746332
CVSS
9.9

Affected system type ABAP
Patchday 2026-06
Released on 2026/06/09
Description 3746332 - [CVE-2026-44748] XML Signature Wrapping in SAML Authentication in SAP NetWeaver AS ABAP and ABAP Platform
3717897
CVSS
9.8

Affected system type Kernel / ABAP
Patchday 2026-06
Released on 2026/06/09
Description 3717897 - [CVE-2026-27671] Memory Corruption vulnerability in Application Server ABAP of SAP NetWeaver and ABAP Platform
3733064
CVSS
9.6

Affected system type SAP Commerce Cloud
Patchday 2026-06
Released on 2026/05/12
Description 3733064 - [CVE-2026-34263] Missing authentication check in SAP Commerce Cloud configuration
3748262
CVSS
9.1

Affected system type SAP Commerce Cloud
Patchday 2026-06
Released on 2026/06/09
Description 3748262 - [CVE-2026-22732] Potential Spring Security vulnerability within SAP Commerce Cloud and SAP Data Hub
3727078
CVSS
9.0

Affected system type Java
Patchday 2026-06
Released on 2026/06/09
Description 3727078 - [CVE-2026-40128] Directory Traversal vulnerability in SAP NetWeaver Application Server Java (Web Container)