SAP Patches Critical SQL Injection in S/4HANA with CVSS 9.9 Score
January 2026 Security Patch Day addresses 19 vulnerabilities including CVE-2026-0501, a critical SQL injection in S/4HANA's General Ledger that enables full system compromise through arbitrary SQL execution.