{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34264", "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "state": "PUBLISHED", "assignerShortName": "sap", "dateReserved": "2026-03-26T19:02:45.983Z", "datePublished": "2026-04-14T00:09:12.272Z", "dateUpdated": "2026-04-14T13:14:17.154Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "shortName": "sap", "dateUpdated": "2026-04-14T00:09:12.272Z"}, "title": "Information Disclosure vulnerability in SAP Human Capital Management for SAP S/4HANA", "problemTypes": [{"descriptions": [{"lang": "eng", "cweId": "CWE-204", "description": "CWE-204: Observable Response Discrepancy", "type": "CWE"}]}], "affected": [{"vendor": "SAP_SE", "product": "SAP Human Capital Management for SAP S/4HANA", "versions": [{"status": "affected", "version": "S4HCMRXX 100"}, {"status": "affected", "version": "101"}, {"status": "affected", "version": "102"}, {"status": "affected", "version": "SAP_HRRXX 600"}, {"status": "affected", "version": "604"}, {"status": "affected", "version": "608"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the content shown, beyond their authorized scope. This leads to disclosure of sensitive information causing a high impact on confidentiality, while integrity and availability are unaffected.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the content shown, beyond their authorized scope. This leads to disclosure of sensitive information causing a high impact on confidentiality, while integrity and availability are unaffected.</p>"}]}], "references": [{"url": "https://me.sap.com/notes/3680767"}, {"url": "https://url.sap/sapsecuritypatchday"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34264", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-14T12:53:03.744277Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T13:14:17.154Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34264", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-14T12:53:03.744277Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T13:08:55.247Z"}}], "cna": {"title": "Information Disclosure vulnerability in SAP Human Capital Management for SAP S/4HANA", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "SAP_SE", "product": "SAP Human Capital Management for SAP S/4HANA", "versions": [{"status": "affected", "version": "S4HCMRXX 100"}, {"status": "affected", "version": "101"}, {"status": "affected", "version": "102"}, {"status": "affected", "version": "SAP_HRRXX 600"}, {"status": "affected", "version": "604"}, {"status": "affected", "version": "608"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://me.sap.com/notes/3680767"}, {"url": "https://url.sap/sapsecuritypatchday"}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the content shown, beyond their authorized scope. This leads to disclosure of sensitive information causing a high impact on confidentiality, while integrity and availability are unaffected.", "supportingMedia": [{"type": "text/html", "value": "<p>During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the content shown, beyond their authorized scope. This leads to disclosure of sensitive information causing a high impact on confidentiality, while integrity and availability are unaffected.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "eng", "type": "CWE", "cweId": "CWE-204", "description": "CWE-204: Observable Response Discrepancy"}]}], "providerMetadata": {"orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "shortName": "sap", "dateUpdated": "2026-04-14T00:09:12.272Z"}}}, "cveMetadata": {"cveId": "CVE-2026-34264", "state": "PUBLISHED", "dateUpdated": "2026-04-14T13:14:17.154Z", "dateReserved": "2026-03-26T19:02:45.983Z", "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd", "datePublished": "2026-04-14T00:09:12.272Z", "assignerShortName": "sap"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sap:human_capital_management:s4hcmrxx_100:*:*:*:*:*:*:*", "matchCriteriaId": "5384DC3A-9770-407E-89F1-9FC134B5CF50", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:human_capital_management:s4hcmrxx_101:*:*:*:*:*:*:*", "matchCriteriaId": "FC80DB20-E930-410F-9972-CA4CF94CA9B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:human_capital_management:s4hcmrxx_102:*:*:*:*:*:*:*", "matchCriteriaId": "993CDDD4-73D5-47F5-8017-A47B151F6CD0", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:human_capital_management:sap_hrrxx_600:*:*:*:*:*:*:*", "matchCriteriaId": "ABD7D918-79F2-44BB-94A4-8950DAF2B4EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:human_capital_management:sap_hrrxx_604:*:*:*:*:*:*:*", "matchCriteriaId": "22796CDB-3AAA-4323-8A5B-69C61CC2EF46", "vulnerable": true}, {"criteria": "cpe:2.3:a:sap:human_capital_management:sap_hrrxx_608:*:*:*:*:*:*:*", "matchCriteriaId": "3321A186-7B46-42C7-B4B6-FAB96608BBF5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:sap:s\\/4hana:-:*:*:*:*:*:*:*", "matchCriteriaId": "61225714-D573-435F-9423-7AE6A8ED59BC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the content shown, beyond their authorized scope. This leads to disclosure of sensitive information causing a high impact on confidentiality, while integrity and availability are unaffected."}], "id": "CVE-2026-34264", "lastModified": "2026-05-04T14:51:26.123", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "cna@sap.com", "type": "Primary"}]}, "published": "2026-04-14T01:16:04.200", "references": [{"source": "cna@sap.com", "tags": ["Permissions Required"], "url": "https://me.sap.com/notes/3680767"}, {"source": "cna@sap.com", "tags": ["Permissions Required"], "url": "https://url.sap/sapsecuritypatchday"}], "sourceIdentifier": "cna@sap.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-204"}], "source": "cna@sap.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "S4HCMRXX 100"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "101"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "102"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "SAP_HRRXX 600"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "604"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "608"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "SAP Human Capital Management for SAP S/4HANA", "source": "cna", "vendor": "SAP_SE"}, "product": "erp_human_capital_management", "vendor": "sap"}], "analysis": {"en": {"generated_at": "2026-04-14T02:22:07.081442+00:00", "value": {"mitigation_remediation": ["Apply SAP Note\u202f3680767 to address the vulnerability.", "If immediate patching is not possible, reduce user permissions and enforce least\u2011privilege access.", "Monitor authentication logs for unusual enumeration attempts.", "Keep SAP S/4HANA installation up to date."], "summary": {"action": "Patch Now", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "The vulnerability impacts SAP Human Capital Management for SAP S/4HANA. No specific product versions are listed, so any instance of this SAP module that has not applied the latest fixes may be affected. Users should verify the presence of SAP Note 3680767 or subsequent security patches.", "description_and_impact": "During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages that can be intercepted by an authenticated user with low privileges. An attacker can guess and enumerate these messages to learn content beyond their authorized scope, leading to disclosure of sensitive information. The vulnerability does not affect integrity or availability, but the loss of confidentiality can severely impact stakeholder trust and regulatory compliance.", "risk_and_exploitability": "The CVSS base score of 6.5 indicates moderate severity. No EPSS score is available and the vulnerability is not listed in the CISA KEV catalog, suggesting no known widespread exploitation. The attack requires an authenticated SAP account with low privileges; the attacker must manually trigger the authorization checks and parse the returned messages, which indicates a moderate level of skill and access. While there are no publicly disclosed exploits, organizations should treat this as a medium risk and prioritize remediation."}}}}, "created": "2026-04-14T16:16:18.288279+00:00", "updated": "2026-04-14T16:31:14.711429+00:00", "vendors": ["sap", "sap$PRODUCT$erp_human_capital_management"]}