Security Advisories

We've created the first of its kind, SecurityBridge ^{Cloud Platform} to prioritize SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. Our security advisories enable SAP users to understand the security and business implications of running SAP.

The user interface, is designed to be as intuitive as possible but we'd love to hear your feedback and opinions.
We hope you like it!

× Hey there! Glad you made it.
We have found 10 security advices for you to review.

Severity

SAP© Security advisories 10

System Types

Affected SAP© system types

_{Related note}
3248970

_CVSS
4.9

_{Affected system
type}
SAP Customer Data Cloud

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-41209] Information Disclosure Vulnerability in SAP Customer Data Cloud (Gigya)

Security Advisory

_{Related note}
3233226

_CVSS
6.8

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-35296] Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Version Management System)

Security Advisory

_{Related note}
3202523

_CVSS
6.1

_{Affected system
type}
SAP Commerce

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
Cross-Site Scripting (XSS) vulnerability in SAP Commerce

Security Advisory

_{Related note}
3167342

_CVSS
4.8

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-35226] Cross-Site Scripting (XSS) vulnerability in Data Services Management Console

Security Advisory

_{Related note}
3211161

_CVSS
6.1

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-39800] Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (BI LaunchPad)

Security Advisory

_{Related note}
3229425

_CVSS
5.4

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-41206] Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence platform / Analysis for OLAP

Security Advisory

_{Related note}
2495712

_CVSS
6.5

_{Affected system
type}
ABAP

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
Missing authorization check in SAP Automotive Solutions

Security Advisory

_{Related note}
3248384

_CVSS
4.9

_{Affected system
type}
SAP Customer Data Cloud

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-41210] Information Disclosure Vulnerability in SAP Customer Data Cloud (Gigya)

Security Advisory

_{Related note}
3049899

_CVSS
6.5

_{Affected system
type}
SAP Enable Now

_Patchday
2022-10

_{Released
on}
2022/10/11

Description
[CVE-2022-35297] Stored Cross-Site Scripting (XSS) vulnerability in SAP Enable Now

Notifications

Security Advisories

Severity

SAP© Security advisories 10

System Types

Affected SAP© system types

Related note 3248970

CVSS 4.9

Affected system type SAP Customer Data Cloud

Patchday2022-10

Released on2022/10/11

Related note 3233226

CVSS 6.8

Affected system type BI/BO platform

Patchday2022-10

Released on2022/10/11

Related note 3202523

CVSS 6.1

Affected system type SAP Commerce

Patchday2022-10

Released on2022/10/11

Related note 3167342

CVSS 4.8

Affected system type BI/BO platform

Patchday2022-10

Released on2022/10/11

Related note 3211161

CVSS 6.1

Affected system type BI/BO platform

Patchday2022-10

Released on2022/10/11

Related note 3229425

CVSS 5.4

Affected system type BI/BO platform

Patchday2022-10

Released on2022/10/11

Related note 2495712

CVSS 6.5

Affected system type ABAP

Patchday2022-10

Released on2022/10/11

Related note 3248384

CVSS 4.9

Affected system type SAP Customer Data Cloud

Patchday2022-10

Released on2022/10/11

Related note 3049899

CVSS 6.5

Affected system type SAP Enable Now

Patchday2022-10

Released on2022/10/11

Related note 3234755

CVSS 4.3

Affected system type ABAP

Patchday2022-10

Released on2022/10/11

_{Related note}
3248970

_CVSS
4.9

_{Affected system
type}
SAP Customer Data Cloud

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3233226

_CVSS
6.8

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3202523

_CVSS
6.1

_{Affected system
type}
SAP Commerce

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3167342

_CVSS
4.8

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3211161

_CVSS
6.1

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3229425

_CVSS
5.4

_{Affected system
type}
BI/BO platform

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
2495712

_CVSS
6.5

_{Affected system
type}
ABAP

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3248384

_CVSS
4.9

_{Affected system
type}
SAP Customer Data Cloud

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3049899

_CVSS
6.5

_{Affected system
type}
SAP Enable Now

_Patchday
2022-10

_{Released
on}
2022/10/11

_{Related note}
3234755

_CVSS
4.3

_{Affected system
type}
ABAP

_Patchday
2022-10

_{Released
on}
2022/10/11