What is GHSA-5h92-3583-x7wf?

GHSA-5h92-3583-x7wf is a security advisory published by GitHub Security Advisories with High severity. Application server ABAP does not perform necessary authorization checks for an authenticated user...

Which CVE IDs does GHSA-5h92-3583-x7wf cover?

GHSA-5h92-3583-x7wf covers the following CVE IDs: CVE-2026-44751. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-5h92-3583-x7wf?

GHSA-5h92-3583-x7wf has a CVSS v3 base score of 7.1, published by GitHub Security Advisories.

GHSA-5h92-3583-x7wfHighCVSS 7.1

Application server ABAP does not perform necessary authorization checks for an authenticated user...

Vendor

GitHub Security Advisories

Published

June 9, 2026

Last Modified

June 9, 2026

🔗 CVE IDs covered (1)

CVE-2026-44751 →

📋 Description

Application server ABAP does not perform necessary authorization checks for an authenticated user allowing an attacker to execute a report generation command which could overwrite information belonging to another user, resulting in escalation of privileges. This has high impact on integrity with low impact on availability and no impact on confidentiality of the application.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-44751
https://me.sap.com/notes/3735546
https://url.sap/sapsecuritypatchday
https://github.com/advisories/GHSA-5h92-3583-x7wf