Threats Tagged 'cve-2026-27681'
View all threats tagged with 'cve-2026-27681'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-27681'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-27681: CWE-89: Improper Neutralization of Special Elements used in an SQL Command in SAP_SE SAP Business Planning and Consolidation and SAP Business WarehouseCVE-2026-27681 0 CVE-2026-27681 is a critical SQL injection vulnerability in SAP Business Planning and Consolidation and SAP Business Warehouse. It arises from insufficient authorization checks allowing an authenticated user to execute crafted SQL commands. This can lead to unauthorized reading, modification, and deletion of database data, severely impacting confidentiality, integrity, and availability. The vulnerability affects multiple versions of the products, including HANABPC 810, BPC4HANA 300, and SAP_BW versions 750 through 758 and 816. The CVSS score is 9. 9, indicating a critical severity level. No official patch or remediation guidance is currently provided, and no known exploits in the wild have been reported. Organizations using the affected versions should monitor vendor advisories for updates and apply fixes once available. Join the discussion | CVE Database V5 | 04/14/2026, 00:08:05 UTC Added: 04/14/2026, 00:16:56 UTC |
Showing 1 to 1 of 1 result