216.73.217.139

CVE-2026-34257

· Published 14/04/2026 01:16 · Modified 14/04/2026 01:16

Labels: CVE-2026-34257 2026-04-14CVE-2026-34257CWE-601[email protected]

Essential information

Published
14/04/2026 01:16
Modified
14/04/2026 01:16
Author
Creator
CVSS
6.1 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS metrics

Description

Due to an Open Redirect vulnerability in SAP NetWeaver Application Server ABAP, an unauthenticated attacker could craft malicious URL that, if accessed by a victim, they could be redirected to the page controlled by the attacker. This causes low impact on confidentiality and integrity of the application with no impact on availability.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
sap / netweaver application server abap cpe:2.3:a:sap:netweaver_application_server_abap:*:*:*:*:*:*:*:*

References