Home / Jul 15, 2026 / Story
0
#4 The Hacker News general July 14, 2026 at 18:17 UTC

SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data

By [email protected] (The Hacker News)

AI Summary

SAP's July 2026 security updates include a patch for CVE-2026-44747, a CVSS 9.9-rated out-of-bounds write flaw in SAP NetWeaver Application Server ABAP that allows an authenticated attacker to trigger memory corruption via logical errors in memory management. Additional critical vulnerabilities were patched across NetWeaver, Commerce Cloud, and AppRouter, covering 16 flaws in total. SAP NetWeaver's widespread enterprise deployment makes rapid patching essential.

Relevance score: 87.0/100

# More from July 15