Security researchers at Onapsis disclosed 21 security issues in SAP’s HANA in-memory database management, application processing and integration services platform. All of the issues have been either patched by SAP, or in the case of a critical configuration issue, new guidance was issued for administrators. An attacker successfully exploiting these flaws could have a direct path to an organization s business data, which could be manipulated, deleted or stolen. For some of the vulnerabilities, one maliciously crafted packet might be enough to bring down a system, or gain access to critical data.
Source: https://threatpost.com/high-risk-sap-hana-vulnerabilities-patched/115304/