Sap netweaver application server abap
This hub aggregates every CVE we track for Sap netweaver application server abap, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
13
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM10HIGH2LOW1
Monthly trend
1
0
0
1
1
1
0
1
1
0
0
2
1
0
0
0
1
0
0
0
1
1
0
0
2024-082026-07
Latest CVEs
The 13 most recently published vulnerabilities affecting Sap netweaver application server abap.
- CVE-2026-27680CSS Injection vulnerability in SAP NetWeaver Application Server ABAP3.1
- CVE-2026-34257Open Redirect vulnerability in SAP NetWeaver Application Server ABAP6.1
- CVE-2025-42904Information Disclosure vulnerability in Application Server ABAP6.5
- CVE-2025-42945HTML Injection vulnerability in SAP NetWeaver Application Server ABAP6.1
- CVE-2025-42956Multiple vulnerabilities in SAP NetWeaver Application Server ABAP6.1
- CVE-2025-42981Multiple vulnerabilities in SAP NetWeaver Application Server ABAP6.1
- CVE-2025-23186Mixed Dynamic RFC Destination vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP8.5
- CVE-2025-25242Cross-Site Scripting (XSS) in SAP NetWeaver Application Server ABAP6.1
- CVE-2025-0068Missing Authorization check in Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP4.3
- CVE-2024-54198Information Disclosure vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP8.5
- CVE-2024-47593Information Disclosure Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform4.3
- CVE-2024-41732Improper Access Control in SAP Netweaver Application Server ABAP4.7
- CVE-2022-29610SAP NetWeaver Application Server ABAP allows an authenticated attacker to upload malicious files and delete (theme) data, which could result in Stored Cross-Site Scripting (XSS) attack.5.4
Product normalization is registry-driven with AI assist and human review. How it works