Description
The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.
Published: 2026-05-26
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The SAP Gateway permits content injection into error messages, which can expose request artefacts such as regex patterns and reveal internal URI parsing logic. The disclosure is limited to privacy concerns; there is no known impact on integrity or availability, resulting in a low confidentiality effect as reflected in the CVSS score of 4.3.

Affected Systems

This issue affects SAP"s SAP Gateway, a system extension used for handling web requests and routing within the SAP environment. Specific product version details are not provided, so all deployed instances of SAP Gateway that have not yet applied the SAP Fix are potentially vulnerable.

Risk and Exploitability

The CVSS base score of 4.3 indicates a low‑severity risk, and the EPSS score is not available, meaning no known exploitation probability is reported and the vulnerability is not listed in the CISA KEV catalog. The likely attack path involves an attacker crafting requests that trigger rendered error messages, an action that typically requires network access to the SAP Gateway. While the risk is moderate, the absence of a zero‑day impact and the limited scope of information leakage suggest that exposure is unlikely to lead to more severe compromises.

Generated by OpenCVE AI on May 26, 2026 at 19:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply SAP Note 3433366 to update SAP Gateway and remediate the error‑message injection flaw.
  • Restrict network access to the SAP Gateway to trusted IP ranges or internal networks to reduce the attack surface.
  • Monitor SAP Gateway logs for anomalous error messages or unexpected request patterns that may indicate attempted exploitation.

Generated by OpenCVE AI on May 26, 2026 at 19:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Sap
Sap gateway
Vendors & Products Sap
Sap gateway

Tue, 26 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 26 May 2026 18:00:00 +0000

Type Values Removed Values Added
Description The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.
Title Information Disclosure vulnerability in SAP Gateway
Weaknesses CWE-497
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

Subscriptions

Sap Gateway
cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published:

Updated: 2026-05-26T18:36:16.647Z

Reserved: 2026-05-07T18:16:34.195Z

Link: CVE-2026-44749

cve-icon Vulnrichment

Updated: 2026-05-26T18:36:11.639Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-26T18:16:51.190

Modified: 2026-05-26T19:08:15.080

Link: CVE-2026-44749

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:08:51Z

Weaknesses
  • CWE-497

    Exposure of Sensitive System Information to an Unauthorized Control Sphere