-
-
Notifications
Security Advisory for February 2022
Today we have released the security advisories for sap and the month of february 2022 2022/02/18 | AdvisorySecurity Advisory for March 2022
Today we have released the security advisories for sap and the month of march 2022 2022/03/07 | AdvisorySecurity Advisory for January 2022
Today we have released the security advisories for sap and the month of january 2022 2022/01/07 | AdvisorySecurity Advisory for December 2021
Today we have released the security advisories for sap and the month of december 2021 2021/12/27 | AdvisoryGUIDANCE FOR PREVENTING, DETECTING, AND HUNTING FOR CVE-2021-44228 LOG4J 2 EXPLOITATION IN SAP SYSTEMS
Apache log4j2 2.14.1 and below are susceptible to a remote code execution (rce) vulnerability. 2021/12/01 | News
Security Advisory for May 2021
Advisory
In the month of May 2021, we would like to bring 9 security advisories to your attention.
Taking control of the SAP patch management process for the vast product portfolio offered by SAP SE is essential to maintain a steady security posture. We have reviewed the security patches released (and updated) in May 2021 and found corrections that eliminate the following attack vectors:
- "Insufficient security function"
- "Information disclosure"
- "Missing security function"
- "Code Injection"
- "Denial of Service (DoS) "
- "Cross-site request forgery (XSRF)"
- "Information disclosure"
Patches released by the manufacture contain solutions for the components
- "BC-XI-IBD-INF"
- "CA-WUI-APF"
- "BC-FES-CTL"
- "SBO-BC-INT"
- "SBO-HANA-COM"
- "BC-XI-IBF-UI"
- "BC-CTS-ORG"
- "BC-FES-ITS"
- "EHS-SUS-EM"
- "CEC-COM-CPS"
View all advisories of May 2021.