CVE-2026-44769
SQL Injection vulnerability in SAP S/4HANA Project Management (PPM-PRO)
CVSS Score
5.5
EPSS Score
0.0%
EPSS Percentile
0th
SAP S/4HANA application Project Management (PPM-PRO) allows an attacker with high privileges to execute crafted database queries, exposing the backend database. This results in low impact on confidentiality, with no impact on integrity and availability of the application.
| Vendor | sap_se |
| Product | sap s/4hana project management (ppm-pro) |
| Published | Jul 14, 2026 |
| Last Updated | Jul 14, 2026 |
Stay Ahead of the Next One
Get instant alerts for sap_se sap s/4hana project management (ppm-pro)
Be the first to know when new medium vulnerabilities affecting sap_se sap s/4hana project management (ppm-pro) are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:L Attack Vector
Network
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
Low
Affected Versions
SAP_SE / SAP S/4HANA Project Management (PPM-PRO)
SAP_APPL 600 602 603 604 605 606 617 618 S4CORE 102 103 104 105 106 107 108 CPRXRPM 400 450_700 500_702 610_740