-
-
Notifications
View AllSecurity Advisory for February 2022
Today we have released the security advisories for sap and the month of february 2022 2022/02/18 | AdvisorySecurity Advisory for March 2022
Today we have released the security advisories for sap and the month of march 2022 2022/03/07 | AdvisorySecurity Advisory for January 2022
Today we have released the security advisories for sap and the month of january 2022 2022/01/07 | AdvisorySecurity Advisory for December 2021
Today we have released the security advisories for sap and the month of december 2021 2021/12/27 | AdvisoryGUIDANCE FOR PREVENTING, DETECTING, AND HUNTING FOR CVE-2021-44228 LOG4J 2 EXPLOITATION IN SAP SYSTEMS
Apache log4j2 2.14.1 and below are susceptible to a remote code execution (rce) vulnerability. 2021/12/01 | News
Security Advisory for January 2022
Advisory
Taking control of the SAP patch management process for the vast product portfolio offered by SAP SE is essential to maintain a steady security posture. We have reviewed the security patches released (and updated) in January 2022 and found corrections that eliminate the following attack vectors:
- "Code injection"
- "Cross-Site Scripting (XSS)"
- "Information disclosure"
Patches released by the manufacturer contain solutions for the components
- "BC-CCM-MON"
- "BC-SEC-ETD"
- "BC-XI-CON-JWS"
- "BC-XS-ADM"
- "CA-GTF-CSC-EDO-IN-DC"
- "FI-FIO-AP"
- "IOT-BSV-HS-MS"
- "IOT-EDG-OD"
- "MFG-DM-EDGE"
- "SBO-CRO-SEC"
- "XX-PART-ADB-IFM"
- "XX-PART-TRI-CLD-ECT"
View all SAP security advisories of January 2022