[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:sap-warns-of-critical-flaws-in-netweaver-and-commerce-cloud-mrlhzxet":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":15,"action_required":21,"article_ids":22,"ioc_summary":24,"source_urls":25,"status":27,"expires_at":28,"created_at":29,"updated_at":30,"articles":31},"5415d207-3abe-4c48-b8ee-98d69709f2d3","SAP warns of critical flaws in NetWeaver and Commerce Cloud","sap-warns-of-critical-flaws-in-netweaver-and-commerce-cloud-mrlhzxet","SAP released patches for 16 vulnerabilities including three critical flaws affecting NetWeaver AS ABAP, AppRouter, and Commerce Cloud. Memory corruption, HTTP request smuggling, and default credentials could allow unauthenticated attackers to execute code or bypass authentication on affected SAP infrastructure. No active exploitation confirmed yet, but these are high-value targets.","critical","advisory",[12,13,14],"CVE-2026-44747","CVE-2026-27690","CVE-2026-44761",[16,17,18,19,20],"SAP","SAP NetWeaver Application Server ABAP","SAP AppRouter","SAP Commerce Cloud","SAP Business Technology Platform","Inventory all SAP NetWeaver, AppRouter, and Commerce Cloud instances in your environment. Prioritize patching CVE-2026-44747, CVE-2026-27690, and CVE-2026-44761 immediately. Monitor logs for exploitation attempts against these services while patches are deployed.",[23],"6dfbf202-f3b0-42bb-abdd-880ee48f869b",null,[26],"https:\u002F\u002Fwww.bleepingcomputer.com\u002Fnews\u002Fsecurity\u002Fsap-warns-of-critical-flaws-in-netweaver-and-commerce-cloud\u002F","active","2026-07-17T03:05:47.992+00:00","2026-07-15T03:05:52.724428+00:00","2026-07-15T03:09:15.968731+00:00",[32],{"id":23,"title":6,"url":26}]