SAP released 19 patches on Tuesday, fixing a trio of vulnerabilities marked high severity in its business management software. The most pressing fixes are for a directory traversal vulnerability in the company s Netweaver AS Java Web Container, a code injection vulnerability in its Visual Composer design tool, and a cross-site AJAX request vulnerability. The number August patches, 19, is a slight decrease over last month, but otherwise, marks another relatively quiet month for SAP admins who haven t had to deal with a critical vulnerability since April.
Source: https://threatpost.com/sap-patch-tuesday-update-resolves-19-flaws-three-high-severity/127357/