SAP

Security Scorecard

Score

71C

Total CVEs

44

Patch Rate

50%

22 patched

Avg Response

-

days to patch

Critical Gaps

1

exploitable, no detection

Severity Breakdown

Critical6

High6

Medium32

Low0

Patch Status

Patched22 (50%)

Partial/Workaround4 (9%)

Unpatched18 (41%)

CVEs (44)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2026-23683	Fiori Balance Reconciliation Bypass	Medium	4.3	-	Patched
CVE-2026-0491	SAP Landscape Transformation Backdoor	Critical	9.1	-	Patched
CVE-2026-0492	SAP HANA Privilege Escalation	High	8.8	-	Patched
CVE-2026-0493	SAP Fiori App Intercompany Balance Reconciliation CSRF Vulnerability	Medium	4.3	-	Patched
CVE-2026-0494	SAP Fiori App Intercompany Balance Reconciliation Bypass	Medium	4.3	-	Patched
CVE-2026-0495	SAP Fiori App Intercompany Balance Reconciliation Vulnerability	Medium	5.1	-	Patched
CVE-2026-0496	SAP Fiori App Intercompany Balance Reconciliation Vulnerability	Medium	6.6	-	Patched
CVE-2026-0497	SAP Product Designer Business Server Pages UI Bypass	Medium	4.3	-	Patched
CVE-2026-0498	SAP S/4HANA Private Cloud and On-Premise Backdoor Exploit	Critical	9.1	-	Patched
CVE-2026-0499	SAP NetWeaver Enterprise Portal Remote Script Injection	Medium	6.1	-	Patched