How severe is CVE-2026-0507?

CVE-2026-0507 has a CVSS v3 score of 8.4 (HIGH).

CVE-2026-0507

8.4HIGH

Due to an OS Command Injection vulnerability in SAP Application Server for ABAP and SAP NetWeaver RFCSDK, an authenticated attacker with administrative access and adjacent network access could upload

게시됨: 1/13/2026업데이트됨: 1/13/2026

설명

Due to an OS Command Injection vulnerability in SAP Application Server for ABAP and SAP NetWeaver RFCSDK, an authenticated attacker with administrative access and adjacent network access could upload specially crafted content to the server. If processed by the application, this content enables execution of arbitrary operating system commands. Successful exploitation could lead to full compromise of the system�s confidentiality, integrity, and availability.

AI 분석AI 기반

참조

https://me.sap.com/notes/3675151
https://url.sap/sapsecuritypatchday