/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- The following CVEs are flagged as vulnerabilities for ASE 16.0 SP4 PL8: CVE-2026-34480 (Plugin ID: 306549), CVE-2026-34477 (Plugin ID: 306550), CVE-2026-34478 (Plugin ID: 306548).
- Flagged files are log4j-core jars located at: :\sybase\\ASE-16_0\lib\log4j-core-#.##.#.jar and :\sybase\\Shared\lib\log4j-core-#.##.#.jar.
- Organizational policy does not allow leaving flagged log4j files on servers.
- Guidance requested to replace flagged log4j-core jars with a newer version without affecting functionality.
Read more...
Environment
- Product: SAP NetWeaver
- SAP Adaptive Server Enterprise (ASE) 16.0
Product
SAP Adaptive Server Enterprise all versions ; SAP NetWeaver all versions
Keywords
log4j-core, ase 16.0, cve-2026-34477, cve-2026-34478, cve-2026-34480, plugin id 306548, plugin id 306549, plugin id 306550, sybrestore, workload analyzer, wla, rtms, ws-16_0, classpath update, replace jar , KBA , BC-DB-SYB , Business Suite on Adaptive Server Enterprise , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)