SAP users should deploy the patches for Adaptive Server Enterprise (ASE) released last month because the server fails to clear credentials from persistent installation logs. Even though the credentials are encrypted or hashed, attackers can easily decrypt them to gain full access to a sensitive monitoring component. SAP ASE is a complex piece of software with many components, one of which is called Cockpit. The product is used by over 30,000 organizations worldwide, including over 90% of the world’s top 50 banks.”]