{"api_version":"1","generated_at":"2026-06-03T06:13:19+00:00","cve":"CVE-2026-44749","urls":{"html":"https://cve.report/CVE-2026-44749","api":"https://cve.report/api/cve/CVE-2026-44749.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-44749","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-44749"},"summary":{"title":"Information Disclosure vulnerability in SAP Gateway","description":"The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.","state":"PUBLISHED","assigner":"sap","published_at":"2026-05-26 18:16:51","updated_at":"2026-05-26 19:08:15"},"problem_types":["CWE-497","CWE-497 CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere"],"metrics":[{"version":"3.1","source":"cna@sap.com","type":"Primary","score":"4.3","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"}},{"version":"3.1","source":"CNA","type":"CVSS","score":"4.3","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","data":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":4.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","version":"3.1"}}],"references":[{"url":"https://me.sap.com/notes/3433366","name":"https://me.sap.com/notes/3433366","refsource":"cna@sap.com","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://url.sap/sapsecuritypatchday","name":"https://url.sap/sapsecuritypatchday","refsource":"cna@sap.com","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-44749","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44749","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected SAP_GWFND 750","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 751","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 752","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 753","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 754","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 755","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 756","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 757","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected 758","platforms":[]},{"source":"CNA","vendor":"SAP_SE","product":"SAP Gateway","version":"affected SAP_BASIS 795","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"44749","cve":"CVE-2026-44749","epss":"0.000090000","percentile":"0.010090000","score_date":"2026-05-31","updated_at":"2026-06-01 00:08:20"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-44749","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","timestamp":"2026-05-26T18:23:06.935000Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-05-26T18:36:16.647Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"SAP Gateway","vendor":"SAP_SE","versions":[{"status":"affected","version":"SAP_GWFND 750"},{"status":"affected","version":"751"},{"status":"affected","version":"752"},{"status":"affected","version":"753"},{"status":"affected","version":"754"},{"status":"affected","version":"755"},{"status":"affected","version":"756"},{"status":"affected","version":"757"},{"status":"affected","version":"758"},{"status":"affected","version":"SAP_BASIS 795"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.</p>"}],"value":"The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"NONE","baseScore":4.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-497","description":"CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere","lang":"eng","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-05-26T17:24:33.329Z","orgId":"e4686d1a-f260-4930-ac4c-2f5c992778dd","shortName":"sap"},"references":[{"url":"https://me.sap.com/notes/3433366"},{"url":"https://url.sap/sapsecuritypatchday"}],"source":{"discovery":"UNKNOWN"},"title":"Information Disclosure vulnerability in SAP Gateway","x_generator":{"engine":"Vulnogram 1.0.2"}}},"cveMetadata":{"assignerOrgId":"e4686d1a-f260-4930-ac4c-2f5c992778dd","assignerShortName":"sap","cveId":"CVE-2026-44749","datePublished":"2026-05-26T17:24:33.329Z","dateReserved":"2026-05-07T18:16:34.195Z","dateUpdated":"2026-05-26T18:36:16.647Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-05-26 18:16:51","lastModifiedDate":"2026-05-26 19:08:15","problem_types":["CWE-497","CWE-497 CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere"],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"44749","Ordinal":"1","Title":"Information Disclosure vulnerability in SAP Gateway","CVE":"CVE-2026-44749","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"44749","Ordinal":"1","NoteData":"The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.","Type":"Description","Title":"Information Disclosure vulnerability in SAP Gateway"}]}}}