high2026-07-14SAP ApprouterCVE-2026-44745
Open Redirect in SAP Approuter OAuth2 Login Flow
SAP Approuter (@sap/approuter npm)
Our Take
Bundle this with the critical Approuter HTTP request smuggling fix (Note 3720138) — both are resolved by upgrading to Approuter 20.10.0. One upgrade, two vulnerabilities closed.
Vulnerability Detail
An open redirect vulnerability in the OAuth2 login flow of SAP Approuter allows an unauthenticated attacker to craft a URL that redirects users to an attacker-controlled domain after authentication. This enables phishing attacks that harvest SAP credentials or tokens by redirecting victims post-login.
Patch Action
Upgrade @sap/approuter to version 20.10.0 or higher. This patch resolves both CVE-2026-44745 (open redirect) and CVE-2026-27690 (HTTP request smuggling) — a single upgrade addresses both Approuter notes.
Affected Versions
@sap/approuter < 20.10.0
Patch Info