CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sap: >> Manage Reference Structures >> uis4h_109 Security Vulnerabilities

CVE-2026-27679

Due to missing authorization checks in the SAP S/4HANA frontend OData Service (Manage Reference Structures), an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability has a high impact on integrity, while confidentiality and availability are not impacted.

CVSS Score

6.5

EPSS Score

0.0

Published

2026-04-14

Page 1

Vulnerabilities

Vulnerable Software

Sap: >> Manage Reference Structures >> uis4h_109 Security Vulnerabilities

Products

Pricing

Contact Us