medium2026-04-14SAP HANACVE-2026-34262

Information Disclosure vulnerability in SAP HANA Cockpit and HANA Database Explorer

SAP HANA Cockpit and HANA Database Explorer

Our Take

HANA Cockpit is often internet-accessible in hybrid setups. Information disclosure on the database management layer is worth patching even at CVSS 5. Next window.

Vulnerability Detail

An information disclosure vulnerability in the HANA Cockpit and Database Explorer that could expose sensitive database configuration or data to unauthorized users.

Patch Action

Apply SAP Note 3730639.

Affected Versions

SAP_HANA_COCKPIT 2.0

Patch Info

Timing

🟡 Next patch window

CVSS Score

SAP Note

3730639 ↗

CVE

CVE-2026-34262

Published

2026-04-14

Timing recommendations are editorial. Verify against official SAP Security Notes before acting on production systems.

← All patches