-
-
Notifications
View All[Action required] SAP Security Patch Day - April
SAP Patches released on SAP Security Patch Day - April 9 2024 2024/04/09 | Advisory |[Action required] SAP Security Patch Day - March
SAP Patches released on SAP Security Patch Day - March 12 2024 2024/03/12 | Advisory |[Action required] SAP Security Patch Day - February
SAP Patches released on SAP Security Patch Day - February 13 2024 2024/02/13 | Advisory |[Action required] SAP Security Patch Day - January
SAP Patches released on SAP Security Patch Day - January 9 2024 2024/01/09 | Advisory |[Action required] SAP Security Patch Day - December
SAP Patches released on SAP Security Patch Day - December 12 2023 2023/12/12 | Advisory |[Action required] SAP Security Patch Day - November
SAP Patches release on SAP Security Patch Day of November on 14th 2023 2023/11/14 | Advisory |[Action required] SAP Security Patch Day - October
SAP Patches release on SAP Security Patch Day of October on 10th 2023 2023/10/10 | Advisory |[Action required] SAP Security Patch Day - September
SAP Patches release on SAP Security Patch Day of September on 12th 2023 2023/09/12 | Advisory |[Action required] SAP Security Patch Day - August
SAP Patches release on SAP Security Patch Day of August on 8th 2023 2023/08/08 | Advisory |[Action required] SAP Security Patch Day - July
SAP Patches release on SAP Security Patch Day of July on 11th 2023 2023/07/11 | Advisory |[Action required] SAP Security Patch Day - June
SAP Patches release on SAP Security Patch Day of June on 13th 2023 2023/06/13 | Advisory |[Action required] SAP Security Patch Day - May
SAP Patches release on SAP Security Patch Day of May on 9th 2023 2023/05/09 | Advisory |[Action required] SAP Security Patch Day - April
SAP Patches release on SAP Security Patch Day of April on 11th 2023 2023/04/11 | Advisory |[Action required] SAP Security Patch Day - March
SAP Patches release on SAP Security Patch Day of March on 14th 2023 2023/03/14 | Advisory |[Action required] SAP Security Patch Day - February
SAP Patches release on SAP Security Patch Day of February on 14th 2023 2023/02/14 | Advisory |[Action required] SAP Security Patch Day - January
HotNews Patches release on SAP Security Patch Day of January on 10th 2023 2023/01/10 | Advisory |[Action required] SAP Security Patch Day - December
SAP Security Patch Day of December the 13th 2022 has been provided. 2022/12/13 | Advisory |[Action required] SAP Security Patch Day - September
[Action required] SAP Security Patch Day of September the 13th has been provided 2022/09/13 | Advisory |[Solution available] App not loading
SAP has removed CDN library version used by SecurityBridge App, caused white screen. 2022/08/11 | News |[Action required] SAP Security Patch Day - August
[Action required] SAP Security Patch Day of August the 7th has been provided 2022/07/14 | Advisory |[Action required] SAP Security Patch Day - July
[Action required] SAP Security Patch Day of July the 5th has been provided 2022/07/14 | Advisory |Security Advisory for April 2022
Today we have released the Security Advisories for SAP and the month of April 2022 2022/03/07 | Advisory |Security Advisory for February 2022
Today we have released the Security Advisories for SAP and the month of February 2022 2022/02/18 | Advisory |Security Advisory for March 2022
Today we have released the Security Advisories for SAP and the month of March 2022 2022/03/07 | Advisory |Security Advisory for January 2022
Today we have released the Security Advisories for SAP and the month of January 2022 2022/01/07 | Advisory |Security Advisory for December 2021
Today we have released the Security Advisories for SAP and the month of December 2021 2021/12/27 | Advisory |GUIDANCE FOR PREVENTING, DETECTING, AND HUNTING FOR CVE-2021-44228 LOG4J 2 EXPLOITATION IN SAP SYSTEMS
Apache Log4j2 2.14.1 and below are susceptible to a remote code execution (RCE) vulnerability. 2021/12/01 | News |Security Advisory for October 2021
Today we have released the Security Advisories for SAP and the month of October 2021 2021/10/03 | Advisory |Security Advisory for September 2021
Today we have released the Security Advisories for SAP and the month of September 2021 2021/09/27 | Advisory |Security Advisory for July 2021
Today we have released the Security Advisories for SAP and the month of July 2021 2021/08/09 | Advisory |Security Advisory for June 2021
Today we have released the Security Advisories for SAP and the month of June 2021 2021/08/09 | Advisory |Security Advisory for May 2021
Today we have released the Security Advisories for SAP and the month of May 2021 2021/04/07 | Advisory |Security Advisory for April 2021
Today we have released the Security Advisories for SAP and the month of April 2021 2021/04/07 | Advisory |Security Advisory for February 2021
Today we have released the Security Advisories for SAP and the month of February 2021 2021/02/04 | Advisory |Security Advisory for January 2021
Today we have released the Security Advisories for SAP and the month of January 2021 2021/02/04 | Advisory |Security Advisory for December 2020
Today we have released the Security Advisories for the month of December 2020 2021/01/13 | Advisory |Security Advisory for November 2020
Today we have released the Security Advisories for the month of November 2020 2020/11/24 | Advisory |Start your journey on the road to securing SAP
A new whitepaper has been published describing the important milestones and steps on your road to secure SAP. 2020/11/24 | Advisory |
[Action required] SAP Security Patch Day - July
Advisory
The SAP Security Patch Day in July 2023 encompassed patches for multiple SAP components. Today SAP Response Team has released several critical patches for vulnerabilities, including two notes with Hot News Priority, indicating the highest level of severity. It is imperative that immediate action is taken to address these vulnerabilities and protect your SAP systems.
One of the critical vulnerabilities is related to the browser control Google Chromium delivered with SAP Business Client (Note Number 2622660). This Note is continuously updated to reflect the vulnerability risk and requires urgent attention. The other SNote 3350297 with a with Hot News Priority addresses a specific vulnerability [CVE-2023-36922] titled OS command injection vulnerability in SAP ECC and SAP S/4HANA (IS-OIL). Both of these vulnerabilities demand immediate remediation to ensure the security of your SAP environment. Further all customers should revisit the SAP WebDispatcher patch levels. With SNote 3233899, SAP has released a Version 6 of [CVE-2023-33987] Request smuggling and request concatenation vulnerability in SAP Web Dispatcher. Also caring a high priority SNote 3340735 titled [CVE-2023-35871] Memory Corruption vulnerability in SAP Web Dispatcher should be implemented if applicable.
To safeguard your systems, it is crucial to apply the necessary patches promptly. We strongly recommend prioritizing these ALL security patches to mitigate potential risks and protect against exploitation by malicious actors. Keeping your systems up to date with the latest security patches is vital in minimizing future vulnerabilities.
As a proactive measure, the SecurityBridge Team has taken swift action by updating the cloud backbone with the latest security patches. If you are a SecurityBridge customer, we highly encourage you to initiate the validation process using the Patch Management App to identify the most relevant patches for your specific environment.
At SecurityBridge, we prioritize the security of your environment and understand its significance. Our streamlined validation process aims to provide tailored guidance, recognizing the unique nature of each customer's environment. We are dedicated to assisting you in selecting the most appropriate patches that align with your system's specific requirements.