PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-44768 SAP_SE CVE debrief

CVE-2026-44768 is a vulnerability in SAP CRM WebClient UI that allows an attacker to inject and execute malicious scripts due to the absence of a Content Security Policy (CSP) configuration for certain restrictive directives. This vulnerability has a low impact on the integrity of the application. Confidentiality and availability are not impacted. Affected product deployments should be identified and owners assigned for follow-up. The vulnerability class is related to script injection and CSP bypass.

Vendor
SAP_SE
Product
SAP CRM (WebClient UI)
CVSS
MEDIUM 4.1
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-14
Original CVE updated
2026-07-14
Advisory published
2026-07-14
Advisory updated
2026-07-14

Who should care

SAP CRM WebClient UI users and administrators, vulnerability management teams, security teams, and operators should be aware of this vulnerability and take necessary precautions to prevent exploitation. Affected product deployments should be identified and owners assigned for follow-up. Compensating controls should be reviewed for exposed systems while remediation is scheduled and verified.

Technical summary

The vulnerability exists due to the absence of a Content Security Policy (CSP) configuration for certain restrictive directives in SAP CRM WebClient UI. This allows an attacker to inject and execute malicious scripts in the context of the application, impacting the integrity of the application. The technical impact is limited to integrity, with no impact on confidentiality and availability. Defensive measures should focus on implementing a CSP configuration and monitoring for suspicious activity.

Defensive priority

Medium priority due to the low impact on integrity and no impact on confidentiality and availability.

Recommended defensive actions

  • Apply the vendor's security patch
  • Implement a Web Application Firewall (WAF) to detect and prevent attacks
  • Monitor the application for suspicious activity
  • Conduct regular security audits and vulnerability assessments
  • Review compensating controls for exposed systems
  • Track exceptions and retest remediated assets
  • Verify affected scope and severity with the vendor

Evidence notes

The CVE record was published on 2026-07-14T01:16:18.253Z and has not been modified since then. The NVD entry is currently being reviewed. SAP CRM WebClient UI users and administrators should verify the absence of a Content Security Policy (CSP) configuration for certain restrictive directives and take necessary precautions to prevent exploitation. Evidence limits suggest that further verification is required to confirm affected scope and severity.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-14T01:16:18.253Z and has not been modified since then.