COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-27690

CVE-2026-27690

Severity
critical
Source
NVD · cve
Published
2026-07-14
CVSS
9.1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-27690
shame 35/100

Due to an HTTP Request Smuggling vulnerability in SAP Approuter, an unauthenticated attacker could send a specially crafted HTTP request that leads to request-response desynchronization. This could result in the exposure of user responses and cause the system to become unavailabl

Description

Due to an HTTP Request Smuggling vulnerability in SAP Approuter, an unauthenticated attacker could send a specially crafted HTTP request that leads to request-response desynchronization. This could result in the exposure of user responses and cause the system to become unavailable. This leads to a high impact on confidentiality and availability.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.