SecurityWeek

SAP Releases 16 New Security Notes on September 2024 Patch Day

SAP has released patches for multiple missing authorization check and information disclosure vulnerabilities on its September 2024 Security Patch Day. Enterprise software maker SAP on Tuesday ...
Security Boulevard

Navigating SAP Security Notes: September 2024 Patch Tuesday

Security Note 3479478 – [CVE-2024-41730] received a CVSS score of 9.8 and addresses a “Missing Authorization check in SAP BusinessObjects Business Intelligence Platform.” This is the most critical ...
GitHub

mchcn2018/SAP-mcp-sap-notes

This Model Context Protocol (MCP) server provides direct access to SAP Notes and Knowledge Base articles through Cursor AI. It uses SAP Passport certificate authentication and Playwright browser ...
Security Boulevard

Navigating SAP Security Notes: May 2024 Patch Tuesday

SAP CX Commerce utilizes the Swagger UI, which is vulnerable to CVE-2019-17495 (CSS Injection). This vulnerability is tagged with a CVSS score of 9.8 and enables potential attackers to perform a ...
GitHub

HouzuoGuo/sap-training-notes

SAP : presentation server + app server + database. 2-tier setup: app server + db on one host 3-tier setup: app server and db run on different hosts Scaling by having multiple app server. SAP ERP has ...
SecurityWeek

In Review: SAP’s 3,660 Security and Support Notes

To date, SAP has issued more than 3,660 Security Notes and Support Package Implementation Notes to address thousands of vulnerabilities in its business critical applications, a new report from ERPScan ...
Cloud Security Alliance

SAP Security Patch Day January 2022: Log4j Causes Record-Breaking Number of HotNews Notes

Because of the incremental character of the patches, affected SAP customers don’t need to implement all of them. Instead, it is sufficient to only apply the SAP patches that include the highest log4j ...