Detections
Analytics

CVE-2026-27675

low

Description

SAP Landscape Transformation contains a vulnerability in an RFC-exposed function module that could allow a high privileged adversary to inject arbitrary ABAP code and operating system commands. Due to this, some information could be modified, but the attacker does not have control over kind or degree. This leads to a low impact on integrity, while confidentiality and availability are not impacted.

References

https://url.sap/sapsecuritypatchday

https://me.sap.com/notes/3723097

Details

Source: Mitre, NVD

Published: 2026-04-14

Updated: 2026-04-14

Risk Information

CVSS v2

Base Score: 1.7

Vector: CVSS2#AV:N/AC:H/Au:M/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 2

Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N

Severity: Low

EPSS

EPSS: 0.00028