SAP Forecasting & Replenishment — authenticated OS-command injection (CVSS 8.2, SAP May 2026 patch day)

cve · CVE-2026-34259

Coverage timeline

first 2026-05-13 → last 2026-05-13

Briefs

1 distinct

Sources cited

3 hosts

Sections touched

—

Co-occurring entities

no co-occurrence

Story timeline

2026-05-13CTI Daily Brief — 2026-05-13

Source distribution

onapsis.com1 (33%)
security-hub.ncsc.admin.ch1 (33%)
securityweek.com1 (33%)

External references

NVD · cve.org · CISA KEV

All cited sources (3)

onapsis.comprimaryinlineOnapsis, 2026-05-12https://onapsis.com/blog/sap-security-patch-day-may-2026/
cited in 2026-05-13
security-hub.ncsc.admin.chinlineNCSC-CH Security Hub #12565, 2026-05-12https://security-hub.ncsc.admin.ch/#/posts/12565
source profile · cited in 2026-05-13
securityweek.cominlineSecurityWeek, 2026-05-12https://www.securityweek.com/sap-patches-critical-s-4hana-commerce-vulnerabilities/
source profile · cited in 2026-05-13

Items in briefs about SAP Forecasting & Replenishment — authenticated OS-command injection (CVSS 8.2, SAP May 2026 patch day)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.