๐Ÿ” CVE Alert

CVE-2026-0487

HIGH 8.4

DLL Hijacking vulnerability in SAProuter on Microsoft Windows

CVSS Score
8.4
EPSS Score
0.0%
EPSS Percentile
0th

SAProuter on Microsoft Windows allows an unauthenticated attacker to load library (DLL) files from an untrusted location, allowing them to execute malicious code on the system. This could enable the attacker to hijack the DLL loading process and achieve arbitrary code execution. This has high impact on confidentiality, integrity and availability of the system.

Vendor sap_se
Product saprouter on microsoft windows
Published Jul 14, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for sap_se saprouter on microsoft windows

Be the first to know when new high vulnerabilities affecting sap_se saprouter on microsoft windows are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

SAP_SE / SAProuter on Microsoft Windows
KRNL64NUC 7.22 7.22EXT KRNL64UC 7.22 7.53 SAP_ROUTER 7.53 7.54 KERNEL 7.22 7.77 7.89 7.93 9.16 9.17 9.18

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
me.sap.com: https://me.sap.com/notes/3692165 url.sap: https://url.sap/sapsecuritypatchday