Critical Vulnerability Hits SAP Enterprise Applications

The vulnerability could allow an unauthenticated application to be used in SAP NetWeaver. The vulnerability has been given a CVSS score of 10. Both SAP and CISA have issued a patch for the vulnerability, which has been described as ‘vulnerable’ The vulnerability is a lack of authentication in a web component of the software that could be used to attack a web application in a broad swath of SAP applications, such as those of the company’s NetWeaker AS Java. The patch is issued immediately.”]

Source: https://www.darkreading.com/application-security/critical-vulnerability-hits-sap-enterprise-applications

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text