SAP Security Notes - July 2020 - Safe O'Clock

SAP Security Notes – July 2020

July 14, 2020

On the 14th of July 2020, SAP Security Patch Day saw the release of 7 new Security Notes.

There were 2 updates to previously released Patch Day Security Notes.

Notes by severity

HotNews 2
Correction with high priority 1
Correction with medium priority 6
Correction with low priority 0

Highlights

On August Patch Day SAP presents 3 high-severity Notes with 2 of them rated as HotNews. 

We start our relatively short digest for today with the usual update of a 2622660 Security Note – Security updates for the browser control Google Chromium delivered with SAP Business Client with a CVSS Score of 9.8.

Another HotNews Note for today is 2934135Multiple Vulnerabilities in SAP NetWeaver AS JAVA (LM Configuration Wizard) with a CVSS Score of 10. The Note describes such vulnerabilities to attacks of LM Configuration Wizard as Missing Authentication and Path Traversal. An attacker without prior authentication and then execute configuration tasks to perform critical actions against the SAP Java system, including the ability to create an administrative user due to missing authentication. The insufficient input path validation of certain parameters in the web service, on the other hand, allows an unauthenticated attacker to exploit a method to download zip files to a specific directory.

 

You Might Be Interested In

The latest news in the
sphere of SAP security

SAP Security Notes – August 2023

On the 8th of August 2023, SAP Security Patch Day saw the release of 15 new Security Notes. There were […]

Read more
SAP News Overview for July 2023

SAP Advisory Group speaks AI ethics Last month, the regular meeting of the SAP Advisory Group on the Ethics of Artificial […]

Read more
SAP Security Notes – July 2023

On the 11th of July 2023, SAP Security Patch Day saw the release of 16 new Security Notes. There were […]

Read more
SAP News Overview for June 2023

VMware implemented SAP Commissions VMware is an influential software company founded back in 1998. During its existence, the company has […]

Read more

Subscribe today to get more insights,
updates, and industry trends

Delivered to your inbox weekly.
No spam. We respect your privacy

    This website use cookies. Learn more
    OK