Security · 2h ago
SAP Fixes Critical NetWeaver ABAP Bug with CVSS 9.9
SAP released July 2026 security patches addressing multiple vulnerabilities, including a critical out-of-bounds write flaw in NetWeaver Application Server ABAP. The bug, CVE-2026-44747 with a CVSS score of 9.9, could let authenticated attackers corrupt memory to expose or modify data. SAP urges customers to apply updates promptly.
Meridian48 take
The high CVSS score underscores the risk of memory corruption bugs in enterprise software, but the requirement for authentication limits the attack surface.
Read the full reporting
SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data →
The Hacker News
sapnetweaver