Security Advisories

We've created the first of its kind, SecurityBridge ^{Cloud Platform} to prioritize SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. Our security advisories enable SAP users to understand the security and business implications of running SAP.

The user interface, is designed to be as intuitive as possible but we'd love to hear your feedback and opinions.
We hope you like it!

× Hey there! Glad you made it.
We have found 6 security advices for you to review.

Severity

SAP© Security advisories 6

System Types

Affected SAP© system types

_{Related note}
3428847

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-25645] Information Disclosure vulnerability in SAP NetWeaver (Enterprise Portal)

Security Advisory

_{Related note}
3417399

_CVSS
4.6

_{Affected system
type}
ABAP

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-22133] Improper Access Control in SAP Fiori Front End Server

Security Advisory

_{Related note}
3419022

_CVSS
4.3

_{Affected system
type}
ABAP

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-27900]Missing Authorization check in SAP ABAP Platform

Security Advisory

_{Related note}
3434192

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-28163] Information Disclosure vulnerability in SAP NetWeaver Process Integration (Support Web Pages)

Security Advisory

_{Related note}
3377979

_CVSS
5.4

_{Affected system
type}
Kernel

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-27902] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP, applications based on SAPGUI for HTML (WebGUI)

Security Advisory

_{Related note}
3425682

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12

Description
[CVE-2024-25644] Information Disclosure vulnerability in SAP NetWeaver (WSRM)

Security Advisory

Notifications

Security Advisories

Severity

SAP© Security advisories 6

System Types

Affected SAP© system types

Related note 3428847

CVSS 5.3

Affected system type Java

Patchday2024-03

Released on2024/03/12

Related note 3417399

CVSS 4.6

Affected system type ABAP

Patchday2024-03

Released on2024/03/12

Related note 3419022

CVSS 4.3

Affected system type ABAP

Patchday2024-03

Released on2024/03/12

Related note 3434192

CVSS 5.3

Affected system type Java

Patchday2024-03

Released on2024/03/12

Related note 3377979

CVSS 5.4

Affected system type Kernel

Patchday2024-03

Released on2024/03/12

Related note 3425682

CVSS 5.3

Affected system type Java

Patchday2024-03

Released on2024/03/12

_{Related note}
3428847

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12

_{Related note}
3417399

_CVSS
4.6

_{Affected system
type}
ABAP

_Patchday
2024-03

_{Released
on}
2024/03/12

_{Related note}
3419022

_CVSS
4.3

_{Affected system
type}
ABAP

_Patchday
2024-03

_{Released
on}
2024/03/12

_{Related note}
3434192

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12

_{Related note}
3377979

_CVSS
5.4

_{Affected system
type}
Kernel

_Patchday
2024-03

_{Released
on}
2024/03/12

_{Related note}
3425682

_CVSS
5.3

_{Affected system
type}
Java

_Patchday
2024-03

_{Released
on}
2024/03/12