high2026-07-14SAP ApprouterCVE-2026-44745

Open Redirect in SAP Approuter OAuth2 Login Flow

SAP Approuter (@sap/approuter npm)

Our Take

Bundle this with the critical Approuter HTTP request smuggling fix (Note 3720138) — both are resolved by upgrading to Approuter 20.10.0. One upgrade, two vulnerabilities closed.

Vulnerability Detail

An open redirect vulnerability in the OAuth2 login flow of SAP Approuter allows an unauthenticated attacker to craft a URL that redirects users to an attacker-controlled domain after authentication. This enables phishing attacks that harvest SAP credentials or tokens by redirecting victims post-login.

Patch Action

Upgrade @sap/approuter to version 20.10.0 or higher. This patch resolves both CVE-2026-44745 (open redirect) and CVE-2026-27690 (HTTP request smuggling) — a single upgrade addresses both Approuter notes.

Affected Versions

@sap/approuter < 20.10.0

Patch Info

CVSS Score

8.1

SAP Note

3741519

CVE

CVE-2026-44745

Published

2026-07-14

← All patches