CVE-2026-0510

Obsolete Encryption Algorithm Used in NW AS Java UME User Mapping

Description

The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting User Mapping data. This weakness could allow an attacker with high-privileged access to exploit the vulnerability under specific conditions potentially leading to partial disclosure of sensitive information.This has low impact on confidentiality with no impact on integrity and availability of the application.

INFO

Published Date :

2026-01-13T01:15:43.846Z

Last Modified :

2026-01-13T01:15:43.846Z

Source :

sap

AFFECTED PRODUCTS

The following products are affected by CVE-2026-0510 vulnerability.

Vendors	Products
Sap	Java As

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-0510.

URL	Resource
https://me.sap.com/notes/3593356
https://url.sap/sapsecuritypatchday

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact