medium2026-05-12SAP Financial ConsolidationCVE-2026-40136

Denial of Service in SAP Financial Consolidation

SAP Financial Consolidation

Our Take

Availability impact only. If you run Financial Consolidation, planned window — DoS during a close period could be disruptive but not catastrophic.

Vulnerability Detail

A denial of service vulnerability in SAP Financial Consolidation that could be exploited by an authenticated user to impact availability of the system.

Patch Action

Apply SAP Note 3713521.

Affected Versions

FINANCE 1010

Patch Info

CVSS Score

4.3

SAP Note

3713521 ↗

CVE

CVE-2026-40136

Published

2026-05-12

All content is editorial summary, not professional security advice. CVSS scores and SAP Note IDs are factual references. Patch timing is the responsibility of your security team based on your environment and SAP's official guidance.

← All patches