Security Advisories

The Onapsis Research Labs deliver regular SAP® and Oracle® vulnerability research to our eco-system of customers, partners and the information security industry

Onapsis security advisories enable customers to better understand the security and business implications of discovered SAP and Oracle security issues. This enables organizations to prioritize patches, updates and their remediation strategies to ensure continuity of the business. Onapsis security advisories, together with vendor patches and security notes, are available for download to provide vendors and end-users with the necessary information to mitigate advanced threats to mission-critical applications running on SAP and Oracle.

Critical 09/21/2016 SAP Netweaver

Download: SAP OS Command Injection in SCTC_REFRESH_EXPORT_TAB_COMP

By exploiting this SAP Netweaver vulnerability, an authenticated user will be able to take full control of the system.

Please fill in the following form in order to download the selected Onapsis' resource. The system will send you a download link to your email.

By registering, you will obtain the following benefits:

  • Receive information regarding new/upcoming Onapsis Security Advisories before public release.
  • Receive new issue of Onapsis' SAP Security In-Depth publication before everyone else.
  • Free subscription to the Onapsis Security Newsletter.

Request a
Business Risk Illustration

Examine the security posture and risk exposure of your business-critical applications to determine the potential impact of a cyberattack on your organization.

Engage