SAP Security Notes, July 2026
Hot news note 3747367 addresses a critical memory corruption vulnerability in SAP NetWeaver Application Server ABAP, tracked as CVE-2026-44747. An authenticated attacker could exploit faulty memory-management logic to perform an out-of-bounds stack write, potentially gaining unauthorized access to data, modifying information, or causing system unavailability. The vulnerability therefore has a high impact on confidentiality, integrity,