PatchSiren cyber security CVE debrief
CVE-2026-44768 SAP_SE CVE debrief
CVE-2026-44768 is a vulnerability in SAP CRM WebClient UI that allows an attacker to inject and execute malicious scripts due to the absence of a Content Security Policy (CSP) configuration for certain restrictive directives. This vulnerability has a low impact on the integrity of the application. Confidentiality and availability are not impacted. Affected product deployments should be identified and owners assigned for follow-up. The vulnerability class is related to script injection and CSP bypass.
- Vendor
- SAP_SE
- Product
- SAP CRM (WebClient UI)
- CVSS
- MEDIUM 4.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-14
- Original CVE updated
- 2026-07-14
- Advisory published
- 2026-07-14
- Advisory updated
- 2026-07-14
Who should care
SAP CRM WebClient UI users and administrators, vulnerability management teams, security teams, and operators should be aware of this vulnerability and take necessary precautions to prevent exploitation. Affected product deployments should be identified and owners assigned for follow-up. Compensating controls should be reviewed for exposed systems while remediation is scheduled and verified.
Technical summary
The vulnerability exists due to the absence of a Content Security Policy (CSP) configuration for certain restrictive directives in SAP CRM WebClient UI. This allows an attacker to inject and execute malicious scripts in the context of the application, impacting the integrity of the application. The technical impact is limited to integrity, with no impact on confidentiality and availability. Defensive measures should focus on implementing a CSP configuration and monitoring for suspicious activity.
Defensive priority
Medium priority due to the low impact on integrity and no impact on confidentiality and availability.
Recommended defensive actions
- Apply the vendor's security patch
- Implement a Web Application Firewall (WAF) to detect and prevent attacks
- Monitor the application for suspicious activity
- Conduct regular security audits and vulnerability assessments
- Review compensating controls for exposed systems
- Track exceptions and retest remediated assets
- Verify affected scope and severity with the vendor
Evidence notes
The CVE record was published on 2026-07-14T01:16:18.253Z and has not been modified since then. The NVD entry is currently being reviewed. SAP CRM WebClient UI users and administrators should verify the absence of a Content Security Policy (CSP) configuration for certain restrictive directives and take necessary precautions to prevent exploitation. Evidence limits suggest that further verification is required to confirm affected scope and severity.
Official resources
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-14T01:16:18.253Z and has not been modified since then.