EUVD-2026-29371

🗓️ 12 May 2026 03:31:26Reported by EUVDType

Authenticated attacker can inject SQL via user input in SAP search for abap, risking data leak.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2026-34260	12 May 202602:20	–	attackerkb
Circl	CVE-2026-34260	12 May 202604:56	–	circl
CNNVD	SAP S/4HANA SQL注入漏洞	12 May 202600:00	–	cnnvd
CVE	CVE-2026-34260	12 May 202602:20	–	cve
Cvelist	CVE-2026-34260 SQL injection vulnerability in SAP S/4HANA (SAP Enterprise Search for ABAP)	12 May 202602:20	–	cvelist
NCSC	Vulnerabilities found in various SAP products	12 May 202612:21	–	ncsc
NVD	CVE-2026-34260	12 May 202603:16	–	nvd
Positive Technologies	PT-2026-39921	12 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-34260	5 Jun 202619:22	–	redhatcve
Tenable Nessus	SAP NetWeaver AS ABAP SQL Injection (3724838)	15 May 202600:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "2487c44a-7da6-3f78-ae7f-95d027507763",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "23d124f6-06ac-3047-a7f3-bd6ef0957a9d",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 758"
      },
      {
        "id": "43d16b2a-0013-313c-a620-31f7e04d8e00",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 753"
      },
      {
        "id": "612f7e5b-db2f-3d8d-8ff9-a6261aafbd15",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 816"
      },
      {
        "id": "77ef9607-db41-3a11-a80a-ae1e8aeecaef",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 755"
      },
      {
        "id": "8bfcac4a-0090-300b-a6df-5e9f6f1487e4",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 754"
      },
      {
        "id": "9a0f1621-ee7c-3028-81b1-e2cb85833bc9",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 757"
      },
      {
        "id": "cda3b101-ce14-3f47-b00d-198a1fe8d80d",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 756"
      },
      {
        "id": "d3ef494c-e2a1-3541-bb75-1896117e5864",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 751"
      },
      {
        "id": "f60b5e61-84de-30ee-aceb-840bc6d089e7",
        "product": {
          "name": "SAP S/4HANA (SAP Enterprise Search for ABAP)"
        },
        "product_version": "SAP_BASIS 752"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3724838
url	www.url.sap/sapsecuritypatchday
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-34260

12 May 2026 03:31Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.19.6

EPSS0.00015

SSVC