CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sap: >> Webclient Ui Framework Security Vulnerabilities

CVE-2026-0488

An authenticated attacker in SAP CRM and SAP S/4HANA (Scripting Editor) could exploit a flaw in a generic function module call and execute unauthorized critical functionalities, which includes the ability to execute an arbitrary SQL statement. This leads to a full database compromise with high impact on confidentiality, integrity, and availability.

CVSS Score

9.9

EPSS Score

0.0

Published

2026-02-10

Page 1

Vulnerabilities

Vulnerable Software

Sap: >> Webclient Ui Framework Security Vulnerabilities

Products

Pricing

Contact Us