medium2026-04-14SAP HANACVE-2026-34262

Information Disclosure vulnerability in SAP HANA Cockpit and HANA Database Explorer

SAP HANA Cockpit and HANA Database Explorer

Our Take

HANA Cockpit is often internet-accessible in hybrid setups. Information disclosure on the database management layer is worth patching even at CVSS 5. Next window.

Vulnerability Detail

An information disclosure vulnerability in the HANA Cockpit and Database Explorer that could expose sensitive database configuration or data to unauthorized users.

Patch Action

Apply SAP Note 3730639.

Affected Versions

SAP_HANA_COCKPIT 2.0

Patch Info

CVSS Score

SAP Note

3730639 ↗

CVE

CVE-2026-34262

Published

2026-04-14

All content is editorial summary, not professional security advice. CVSS scores and SAP Note IDs are factual references. Patch timing is the responsibility of your security team based on your environment and SAP's official guidance.

← All patches