What is GHSA-rgfw-84wh-4r93?

GHSA-rgfw-84wh-4r93 is a security advisory published by GitHub Security Advisories with Medium severity. The Remote Function Call (RFC) modules of the Operational Data Provisioning Data Replication API ...

Which CVE IDs does GHSA-rgfw-84wh-4r93 cover?

GHSA-rgfw-84wh-4r93 covers the following CVE IDs: CVE-2026-44754. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-rgfw-84wh-4r93?

GHSA-rgfw-84wh-4r93 has a CVSS v3 base score of 6.6, published by GitHub Security Advisories.

GHSA-rgfw-84wh-4r93MediumCVSS 6.6

The Remote Function Call (RFC) modules of the Operational Data Provisioning Data Replication API ...

Vendor

GitHub Security Advisories

Published

June 9, 2026

Last Modified

June 9, 2026

🔗 CVE IDs covered (1)

CVE-2026-44754 →

📋 Description

The Remote Function Call (RFC) modules of the Operational Data Provisioning Data Replication API (ODP-RFC) are missing caller identification of permitted SAP-internal applications and are being used by customer or third-party applications in ways that are not aligned with its intended usage. Which could lead to unintended disclosure of data, but does not affect integrity, and poses minimal availability concerns for the application.

🔗 References (4)

https://nvd.nist.gov/vuln/detail/CVE-2026-44754
https://me.sap.com/notes/3748819
https://url.sap/sapsecuritypatchday
https://github.com/advisories/GHSA-rgfw-84wh-4r93