A vulnerability was found in SAP NetWeaver Application Server for ABAP and ABAP Platform . It has been classified as critical . Affected by this issue is some unknown functionality. Performing a manipulation results in command injection. This vulnerability was named CVE-2026-40135 . The attack may be initiated remotely. There is no available exploit. It is suggested to install a patch to address this issue.