MEDIUM
SAP_SE
CVE published 2026-05-26
CVE-2026-44749
A content injection vulnerability in SAP Gateway allows authenticated attackers to manipulate error messages, potentially exposing request artifacts such as regex patterns and URI parsing logic. The vulnerability has a CVSS 3.1 score of 4.3 (Medium severity) with low impact on confidentiality; integrity and availability are unaffected. The issue was published by NVD on 2026-05-26 and classified under CWE- [truncated]