SAP releases August 2022 security updates
On 9th of August 2022, SAP released 5 new and 2 updated Security Notes. There is only one hot news note this month.
There is only one hot news this month, and that is SAP Security Note #2622660. This note offers updates to SAP Business Client, including the latest Chromium fixes that have been tested.
The most severe of new vulnerabilities is CVE-2022-32245 (CVSS score of 8.2), which could allow an unauthenticated attacker “to retrieve sensitive information in plain text over the network”. Security Note #3210823 addresses a vulnerability in SAP Business Objects that could expose sensitive information to unauthorized parties.
The second information disclosure vulnerability affects the SAP BO monitoring base. The vulnerability has been fixed in SAP Security Note #3213507 and tagged with CVSS 5.2. This score is subject to change as the score value does not match the assigned CVSS vector. According to the vector, the CVSS score should be 6.9. Unlike the previous vulnerability, an attacker would need authenticated access with high privileges to the same physical/logical network in order to successfully exploit it.
SAP Security Note #3213524, tagged with a CVSS score of 5.2, fixes an information disclosure vulnerability in the SAP BusinessObjects BI platform comments database. The prerequisites for exploiting the vulnerability and the possible impact on the application are exactly the same as for the vulnerability that was fixed with #3213507.
Francisco Partners to Acquire Litmos from SAP
SAP SE and Francisco Partners announced that a definitive agreement has been signed with SAP America Inc. under which Francisco Partners will acquire SAP Litmos from SAP. The transaction is expected to close in the fourth quarter of 2022 and is subject to normal regulatory clearance. Financial terms of the deal were not disclosed.
Francisco Partners is a leading global investment firm specializing in partnering with technology businesses. SAP America Inc. is a subsidiary of SAP SE.
SAP Litmos develops e-learning solutions for leading companies. Recognized as a market leader since 2007, SAP Litmos offers the easiest-to-use LMS – SAP Litmos Training – and an extensive course library – SAP Litmos Training Content.
“We are tremendously excited to partner with Litmos to further unlock its growth potential and deliver even more to its customers and partners,” said Jason Brein and Christine Wang, Partners at Francisco Partners.
Dominik Asam is a New CFO SAP
Dominique Asam is leaving his role as CFO of Airbus to pursue a new opportunity as CFO of SAP. Asam will start on March 7, 2023.
Dominik Asam said: “I have long been an SAP customer and I know firsthand the unique value of the company’s technology for powering customer innovation, transformation and success. I look forward to working with my new colleagues on the Board and throughout the company to continue driving SAP’s ongoing success.”
