Security Advisories  

We've created the first of its kind, ABEX Security Platform to prioritize SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. Our security advisories enable SAP users to understand the security and business implications of running SAP.

The user interface, is designed to be as intuitive as possible but we'd love to hear your feedback and opinions.
We hope you like it!
× Hey there! Glad you made it.
We have found 9 security advices for you to review.

 

 Severity
SAP© Security advisories 9
 System Types
Affected SAP© system types

 

Related note
2701027
CVSS
4.3

Affected system type
BI/BO platform
Patchday
2019-12
Released on
2019/12/10

Description
[CVE-2019-0398] Cross-Site Request Forgery (CSRF) vulnerability in SAP BusinessObjects Business Intelligence Platform (Monitoring application)

Security Advisory

 

Related note
2504979
CVSS
6.4

Affected system type
Java
Patchday
2019-12
Released on
2019/12/10

Description
Upgrade SSL support to TLSv1.2

Security Advisory

 

Related note
2734675
CVSS
6.3

Affected system type
ABAP
Patchday
2019-12
Released on
2019/12/10

Description
Missing Authorization Check in SAP Cash Management

Security Advisory

 

Related note
2803554
CVSS
5.3

Affected system type
ABAP
Patchday
2019-12
Released on
2019/12/10

Description
[CVE-2019-0399] Potential Information Disclosure in SAP Portfolio and Project Management

Security Advisory

 

Related note
2814462
CVSS
5.3

Affected system type
ABAP
Patchday
2019-12
Released on
2019/11/26

Description
Missing Authorization Check in S/4Hana ACR Brazil Option Features

Security Advisory

 

Related note
2830578
CVSS
5.4

Affected system type
BI/BO platform
Patchday
2019-12
Released on
2019/12/10

Description
[CVE-2019-0395] Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Fiori BI Launchpad)

Security Advisory

 

Related note
2845183
CVSS
5.3

Affected system type
SAP Enable Now
Patchday
2019-12
Released on
2019/12/10

Description
[CVE-2019-0405] Multiple Security vulnerabilities in SAP Enable Now release 1911

Security Advisory

 

Related note
2845780
CVSS
6.7

Affected system type
SAP Adaptive Server...
Patchday
2019-12
Released on
2019/12/10

Description
[CVE-2019-0402] Information Disclosure in SAP Adaptive Server Enterprise

Security Advisory

 

Related note
2745211
CVSS
5.3

Affected system type
Java
Patchday
2019-12
Released on
2019/12/10

Description
Information Disclosure in PI Axis Adapter

Security Advisory