CVE-2026-44769
5.5
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:L
Summary
SAP S/4HANA application Project Management (PPM-PRO) allows an attacker with high privileges to execute crafted database queries, exposing the backend database. This results in low impact on confidentiality, with no impact on integrity and availability of the application.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | SAP_APPL 600 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 602 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 603 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 604 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 605 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 606 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 617 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 618 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | S4CORE 102 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 103 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 104 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 105 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 106 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 107 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 108 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | CPRXRPM 400 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 450_700 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 500_702 | affected |
| SAP_SE | SAP S/4HANA Project Management (PPM-PRO) | 610_740 | affected |
Weaknesses
- CWE-89: CWE-89: Improper Neutralization of Special Elements used in an SQL Command
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.