We've created the first of its kind, SecurityBridge Cloud Platform, designed to prioritize SAP patches, updates, and remediation strategies that help prevent disruptions to critical business systems. Our security advisories provide SAP users with valuable insights into the security and business implications of operating SAP.

The user interface is designed to be as intuitive as possible, but we’d love to hear your feedback and suggestions.

× Hey there! Glad you made it.
We have found 10 security advices for you to review.

 

Severity
SAP© Security advisories 10
 System Types
Affected SAP© system types

 

3748819
CVSS
6.6

Affected system type ABAP
Patchday 2026-06
Released on 2026/06/09
Description 3748819 - [CVE-2026-44754] Missing caller identification check-in for ODP Data Replication APIs
3751691
CVSS
6.5

Affected system type ABAP
Patchday 2026-06
Released on 2026/06/09
Description 3751691 - [CVE-2026-44744] SQL Injection vulnerability in SAP S/4HANA
3723655
CVSS
6.1

Affected system type Java
Patchday 2026-06
Released on 2026/06/09
Description 3723655 - [CVE-2026-44746] Reflected Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS Java (JDBC Test Servlet)
3692004
CVSS
6.1

Affected system type ABAP
Patchday 2026-06
Released on 2026/04/14
Description 3692004 - [CVE-2026-34257] Open Redirect vulnerability in SAP NetWeaver Application Server ABAP
3715280
CVSS
4.7

Affected system type SAP Solution Manager
Patchday 2026-06
Released on 2026/06/09
Description 3715280 - [CVE-2026-44757] Cross-Site Scripting (XSS) vulnerability in SAP Wily Introscope Enterprise Manager
3687096
CVSS
4.3

Affected system type BI/BO platform
Patchday 2026-06
Released on 2026/06/09
Description 3687096 - [CVE-2026-44755] Email Spoofing vulnerability in SAP Business Objects Business Intelligence Platform
3673181
CVSS
4.3

Affected system type ABAP
Patchday 2026-06
Released on 2026/06/09
Description 3673181 - [CVE-2026-44750] Missing Authorization check in SAP MDG (Review Match Groups Application)
3433366
CVSS
4.3

Affected system type ABAP
Patchday 2026-06
Released on 2026/05/26
Description 3433366 - [CVE-2026-44749] Information Disclosure vulnerability in SAP Gateway
3718508
CVSS
4.3

Affected system type ABAP
Patchday 2026-06
Released on 2026/05/12
Description 3718508 - [CVE-2026-40134] Missing Authorization Check in SAP Incentive and Commission Management
3682699
CVSS
4.2

Affected system type SAP Fiori
Patchday 2026-06
Released on 2026/06/09
Description 3682699 - [CVE-2026-24315] Path Traversal Vulnerability in SAP Fiori (launchpad)