The Onapsis Security Blog

Die Welt der Sicherheit und Compliance-Konformität von geschäftskritischen Anwendungen ist äußerst dynamisch. In unseren Blog-Posts finden Sie Beobachtungen, Einblicke und Empfehlungen zu den neuesten Nachrichten zum Schutz Ihrer SAP®- und Oracle®-Anwendungen.

SAP Security Notes

SAP Security Notes April 2017: Vulnerabilities Affecting SAP TREX

As with the second Tuesday of every month, today SAP released its monthly Security Notes. This month, SAP published 19 new Security Notes, as well as a summary of 28 different notes including ones published last patch Tuesday. For a second month in a row, there’s a ‘Hot News’ item relating to Remote Code Execution.

In addition to the most critical notes published this month, there are several types of vulnerabilities relating to Missing Authorization Checks, and Missing XML Validation vulnerabilities. Below, you can see a breakdown of this month’s security notes:

SAP Notes March Review

SAP Notes March Review: FAQ about High Priority Notes

We are just a few days away from the release of SAP’s April Security Notes. Since this past month included some of the most critical notes we have seen to date for SAP, we’d like to review a few things we saw in March to ensure we have everything fully covered before heading into April. It was an interesting month for SAP Security, as findings from our Researchers yielded the second ‘Hot News’ note to date for 2017.

Fordern Sie eine kostenlose
Geschäftsrisiko-Illustration an

Untersuchen Sie die Sicherheitslage und das Risiko Ihrer geschäftskritischen Anwendungen, um die möglichen Auswirkungen eines Cyberangriffs auf Ihr Unternehmen zu ermitteln.