{"uuid": "43497770-e147-463b-98a5-b4c9a17c0e1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-40128", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116717913644166220", "content": "\ud83d\udea8 CVE-2026-40128: CRITICAL path traversal in SAP NetWeaver AS Java (ENGINEAPI 7.50). Unauthenticated attackers can access/modify files or disrupt services. No patch yet \u2014 restrict access & monitor SAP advisories. https://radar.offseq.com/threat/cve-2026-40128-cwe-35-path-traversal-in-sapse-sap--7b0cc1b3 #OffSeq #SAP #Infosec #Vuln", "creation_timestamp": "2026-06-09T03:02:42.968640Z"}