CVE-2026-24328

Name of the Vulnerable Software and Affected Versions SAP (affected versions not specified)

Description An unauthenticated attacker can create malicious links. Clicking these links by a victim redirects them to attacker-controlled sites, potentially exposing or altering sensitive information within the victim’s browser. This poses a low risk to the confidentiality and integrity of data, and does not affect application availability. The issue resides within the TAF APPLAUNCHER component of Business Server Pages.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.