Netweaver As Abap Krnl64nuc

netweaver_as_abap_krnl64nuc

Vendor: Sap • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-24320 1Sap 3Netweaver As Abap Kernel Netweaver As Abap Krnl64nucNetweaver As Abap Krnl64uc Feb 17, 2026 Feb 10, 2026 N/A· v4 3.1 LOW· v3 N/A· v2 Due to improper memory management in SAP NetWeaver and ABAP Platform (Application Server ABAP), an authenticated attacker could exploit logical errors in memory management by supplying specially crafted input containing...Show more Due to improper memory management in SAP NetWeaver and ABAP Platform (Application Server ABAP), an authenticated attacker could exploit logical errors in memory management by supplying specially crafted input containing unique characters, which are improperly converted. This may result in memory corruption and the potential leakage of memory content. Successful exploitation of this vulnerability would have a low impact on the confidentiality of the application, with no effect on its integrity or availability.Show less
CVE-2026-0509 1Sap 3Netweaver As Abap Kernel Netweaver As Abap Krnl64nucNetweaver As Abap Krnl64uc Feb 17, 2026 Feb 10, 2026 N/A· v4 9.6 CRITICAL· v3 N/A· v2 SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated, low-privileged user to perform background Remote Function Calls without the required S_RFC authorization in certain cases. This can result...Show more SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated, low-privileged user to perform background Remote Function Calls without the required S_RFC authorization in certain cases. This can result in a high impact on integrity and availability, and no impact on the confidentiality of the application.Show less
CVE-2022-27668 1Sap 4Netweaver As Abap Netweaver As Abap Krnl64nucNetweaver As Abap Krnl64uc+1 more Nov 21, 2024 Jun 14, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions...Show more Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC 7.49, SAP_ROUTER 7.53, 7.22, from a remote client, for example stopping the SAProuter, that could highly impact systems availability.Show less
CVE-2022-29616 1Sap 3Netweaver As Abap Kernel Netweaver As Abap Krnl64nucNetweaver As Abap Krnl64uc Nov 21, 2024 May 11, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 SAP Host Agent, SAP NetWeaver and ABAP Platform allow an attacker to leverage logical errors in memory management to cause a memory corruption.