CVE-2026-23687
Modified Modified - Updated After Analysis
Signed XML Message Forgery in SAP NetWeaver ABAP Enables Unauthorized Access

Publication date: 2026-02-10

Last updated on: 2026-06-09

Assigner: SAP SE

Description
SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid signed message and send modified signed XML documents to the verifier. This may result in acceptance of tampered identity information, unauthorized access to sensitive user data and potential disruption of normal system usage.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-10
Last Modified
2026-06-09
Generated
2026-06-16
AI Q&A
2026-02-10
EPSS Evaluated
2026-06-14
NVD
CVE-2026-23687
EUVD
EUVD-2026-6389
Affected Vendors & Products
Showing 18 associated CPEs
Vendor Product Version / Range
sap sap_basis 700
sap sap_basis 701
sap sap_basis 702
sap sap_basis 731
sap sap_basis 740
sap sap_basis 750
sap sap_basis 751
sap sap_basis 752
sap sap_basis 753
sap sap_basis 754
sap sap_basis 755
sap sap_basis 756
sap sap_basis 757
sap sap_basis 758
sap sap_basis 804
sap sap_basis 916
sap sap_basis 917
sap sap_basis 918
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-347 The product does not verify, or incorrectly verifies, the cryptographic signature for data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in SAP NetWeaver Application Server ABAP and ABAP Platform. It allows an authenticated attacker with normal user privileges to obtain a valid signed message and then send modified signed XML documents to the system verifier.

As a result, the system may accept tampered identity information, which means the attacker can potentially bypass security checks by presenting altered but seemingly valid credentials or data.

Impact Analysis

The impact of this vulnerability includes unauthorized access to sensitive user data, as the attacker can manipulate signed messages to gain access they should not have.

Additionally, it may cause disruption of normal system usage, potentially affecting availability and integrity of the system.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-23687. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart