Hey SAP Community!
I’ve just released a new video covering the latest SAP security patches from June 2024. In this quick overview, we dive into 13 critical vulnerabilities that SAP has addressed.
Key highlights:
– Cross-site scripting in Financial Consolidation
– Denial-of-service vulnerabilities in AS Java and ABAP platforms
– Unrestricted file upload issues
– Missing authorization checks in various modules
The video provides a taste of the in-depth analysis, including code-level explanations and practical demonstrations using SAP transactions like SNOTE.
Interested in the full review? I’ve created a comprehensive course that goes into much more detail. Check out the QR code at the end of the video to access the complete course.
SAP Note Title
3457592Cross-Site Scripting (XSS) vulnerabilities in SAP Financial Consolidation3460407Denial of service (DOS) in SAP NetWeaver AS Java (Meta Model Repository)3453170Denial of service (DOS) in SAP NetWeaver and ABAP platform3459379Unrestricted file upload in SAP Document Builder (HTTP service)3466175Missing Authorization check in SAP S/4HANA (Manage Incoming Payment Files)3465129Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI)3450286Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform3465455Missing Authorization check in SAP BW/4HANA Transformation and DTP3457265Missing Authorization check in SAP Student Life Cycle Management (SLcM)3425571Information Disclosure vulnerability in SAP NetWeaver AS Java (Guided Procedures)2638217Switchable Authorization Checks in Central Finance Infrastructure Components3441817Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Scheduling)3392049Missing Authorization check in SAP Bank Account Management
#SAPSecurity #Vulnerabilities #ContinuousLearning
Hey SAP Community!I’ve just released a new video covering the latest SAP security patches from June 2024. In this quick overview, we dive into 13 critical vulnerabilities that SAP has addressed.Key highlights:- Cross-site scripting in Financial Consolidation- Denial-of-service vulnerabilities in AS Java and ABAP platforms- Unrestricted file upload issues- Missing authorization checks in various modulesThe video provides a taste of the in-depth analysis, including code-level explanations and practical demonstrations using SAP transactions like SNOTE.Interested in the full review? I’ve created a comprehensive course that goes into much more detail. Check out the QR code at the end of the video to access the complete course. SAP Note Title3457592Cross-Site Scripting (XSS) vulnerabilities in SAP Financial Consolidation3460407Denial of service (DOS) in SAP NetWeaver AS Java (Meta Model Repository)3453170Denial of service (DOS) in SAP NetWeaver and ABAP platform3459379Unrestricted file upload in SAP Document Builder (HTTP service)3466175Missing Authorization check in SAP S/4HANA (Manage Incoming Payment Files)3465129Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI)3450286Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform3465455Missing Authorization check in SAP BW/4HANA Transformation and DTP3457265Missing Authorization check in SAP Student Life Cycle Management (SLcM)3425571Information Disclosure vulnerability in SAP NetWeaver AS Java (Guided Procedures)2638217Switchable Authorization Checks in Central Finance Infrastructure Components3441817Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Scheduling)3392049Missing Authorization check in SAP Bank Account Management #SAPSecurity #Vulnerabilities #ContinuousLearning Read More Technology Blogs by Members articles
#SAP
#SAPTechnologyblog
