cvedb.io
CVE-2016-9832
CRITICAL · CVSS 9.9
EPSS exploitation probability: 0%
Published 2016-12-10T02:59:24.340 · Last modified 2026-06-17T00:56:37.620

Summary

PricewaterhouseCoopers (PwC) ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via (1) SAPGUI or (2) Internet Communication Framework (ICF) over HTTP or HTTPS, as demonstrated by WEBGUI or Report.

Affected products

pwc — ace-advanced_business_application_programming

Does this affect you?

Add your gear to cvedb and we'll alert you only when pwc ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.