top of page
perceptive_background_267k.jpg

SAP NetWeaver Enterprise Portal Administration is vulnerable if a privileged user uploads untrusted or malicious content that, upon deserialization, could resul…

Published:

9 maart 2026 om 23:00:00

Alert date:

10 maart 2026 om 18:06:15

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications

SAP NetWeaver Enterprise Portal Administration contains a deserialization vulnerability that can be exploited when privileged users upload untrusted or malicious content. Upon deserialization, this vulnerability could result in high impact to confidentiality, integrity, and availability of the host system. The vulnerability requires privileged user access to exploit but poses significant risk to the affected SAP infrastructure once triggered.

Technical details

Mitigation steps:

Affected products:

SAP NetWeaver Enterprise Portal Administration

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-27685
https://me.sap.com/notes/3714585
https://url.sap/sapsecuritypatchday

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page