SAP Security Notes - December 2019 - Safe O'Clock

SAP Security Notes – December 2019

December 10, 2019

On the 10th of December 2019, SAP Security Patch Day saw the release of 13 Security Notes.

Notes by severity

HotNews 1
Correction with high priority 0
Correction with medium priority 12
Correction with low priority 0

Highlights

On December Patch Day SAP presents 1 HotNews Security Note and 12 medium-severity Security Notes.

The last month of the year seems short on high-severity note releases. However, we will cover the most significant among them in our digest today.

We will start with Note 2622660Security updates for the browser control Google Chromium delivered with SAP Business Client – with the CVSS Score of 10. Due to the complexity of the Chromium systems, the updates for these systems are pretty regular. Suppose you are aware of the number of security issues in this field. In that case, you should also rest assured the fixes necessary will be released sooner or later for the most severe ones as the priority.

Another important Note to highlight is 2504979Upgrade SSL support to TLSv1.2 – with a CVSS Score of 6.4, which tells that MDM (SSLv3 supported) was vulnerable to various security issues like POODLE attack until SP19. SSL protocols could be found very dangerous to the SAP environment, which is why the appropriate support of MDM is essential.

You Might Be Interested In

The latest news in the
sphere of SAP security

SAP Security Notes – October 2023

On the 10th of October 2023, SAP Security Patch Day saw the release of 6 new Security Notes. There were […]

Read more
SAP Security Notes – September 2023

On the 12th of September 2023, SAP Security Patch Day saw the release of 13 new Security Notes. There were […]

Read more
SAP Security Notes – August 2023

On the 8th of August 2023, SAP Security Patch Day saw the release of 15 new Security Notes. There were […]

Read more
SAP News Overview for July 2023

SAP Advisory Group speaks AI ethics Last month, the regular meeting of the SAP Advisory Group on the Ethics of Artificial […]

Read more

Subscribe today to get more insights,
updates, and industry trends

Delivered to your inbox weekly.
No spam. We respect your privacy

    This website use cookies. Learn more
    OK