Description
SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject malicious scripts into a URL parameter. The scripts are reflected in the server response and executed in a user's browser when the crafted URL is visited, leading to theft of session information, manipulation of portal content, or user redirection, resulting in a low impact on the application's confidentiality and integrity, with no impact on availability.
Published: 2026-07-14
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a reflected cross‑site scripting flaw that allows an unauthenticated attacker to inject malicious scripts into a URL parameter. When a user follows the crafted link, the malicious code is echoed back in the response and runs in the victim’s browser, enabling theft of session cookies, alteration of portal content, or forced redirection. The official assessment indicates a low impact on confidentiality and integrity, with no availability effects.

Affected Systems

The affected product is SAP NetWeaver Enterprise Portal from SAP SE. Specific versions are not listed in the advisory data; therefore any instance of the Portal that may use the vulnerable code path could be affected.

Risk and Exploitability

The CVSS score of 6.1 classifies the flaw as medium severity, whereas the EPSS score is unavailable, making it unclear how frequently attackers might target it. The vulnerability is not listed in the CISA KEV catalog. Because the flaw is triggerable through a URL parameter and requires no authentication, exploitation is straightforward for an unauthenticated attacker who can give a victim the crafted link.

Generated by OpenCVE AI on July 14, 2026 at 12:46 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the SAP security patch referenced in SAP Note 3746678 and the associated patch day updates
  • Ensure that all URL parameters processed by SAP NetWeaver Enterprise Portal are properly validated or sanitized to prevent reflected script payloads, following guidelines for input validation
  • Implement a robust Content‑Security‑Policy header or equivalent configuration to restrict execution of injected scripts

Generated by OpenCVE AI on July 14, 2026 at 12:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 14 Jul 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 14 Jul 2026 01:00:00 +0000

Type Values Removed Values Added
Description SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject malicious scripts into a URL parameter. The scripts are reflected in the server response and executed in a user's browser when the crafted URL is visited, leading to theft of session information, manipulation of portal content, or user redirection, resulting in a low impact on the application's confidentiality and integrity, with no impact on availability.
Title Cross Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published:

Updated: 2026-07-14T12:38:05.143Z

Reserved: 2026-05-07T18:31:04.067Z

Link: CVE-2026-44759

cve-icon Vulnrichment

Updated: 2026-07-14T12:37:59.840Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-14T13:00:04Z

Weaknesses
  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')