A vulnerability, which was classified as problematic , has been found in SAP UI5 up to SAP 1.108 . Affected by this vulnerability is an unknown functionality of the component Search UI . This manipulation of the argument URL causes clickjacking. This vulnerability appears as CVE-2026-34258 . The attack may be initiated remotely. There is no available exploit. To fix this issue, it is recommended to deploy a patch.