CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-24312

An erroneous authorization check in SAP Business Workflow leads to privilege escalation. An authenticated administrative user can bypass role restrictions by leveraging permissions from a less sensitive function to execute unauthorized, high-privilege actions. This has a high impact on data integrity, with low impact on confidentiality and no impact on availability of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.9%

CVSS Severity

CVSS v3 Score 5.2

References

Products affected by CVE-2026-24312

Sap » Sap Basis » Version: 752

cpe:2.3:a:sap:sap_basis:752
Sap » Sap Basis » Version: 753

cpe:2.3:a:sap:sap_basis:753
Sap » Sap Basis » Version: 754

cpe:2.3:a:sap:sap_basis:754
Sap » Sap Basis » Version: 755

cpe:2.3:a:sap:sap_basis:755
Sap » Sap Basis » Version: 756

cpe:2.3:a:sap:sap_basis:756
Sap » Sap Basis » Version: 757

cpe:2.3:a:sap:sap_basis:757
Sap » Sap Basis » Version: 758

cpe:2.3:a:sap:sap_basis:758
Sap » Sap Basis » Version: 816

cpe:2.3:a:sap:sap_basis:816

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-24312

Products

Pricing

Contact Us