The Onapsis Blog

The world of business-critical application security is dynamic, with new developments happening on a continuous basis. Check out our blog for recommendations, insights and observations on the latest news for securing your SAP®, Oracle® and Salesforce applications.

icmad

ICMAD Vulnerability Added to CISA’s Known Exploited Vulnerabilities Catalog
08/22/2022 | By
Onapsis Research Labs
|
SAP Security, Research

ICMAD Vulnerability Added to CISA’s Known Exploited Vulnerabilities Catalog

On August 18, 2022 the US Cybersecurity and Infrastructure Security Agency (CISA) added a critical SAP vulnerability–CVE-2022-22536–to its Known Exploited Vulnerabilities Catalog. Though this vulnerability was discovered earlier this year, this validation from CISA shows that organizations should prioritize action immediately.
5 Things To Know About the ICMAD Vulnerabilities in SAP Business-Critical Applications
02/16/2022 | By
Onapsis Research Labs
|
SAP Security

5 Things To Know About the ICMAD Vulnerabilities in SAP Business-Critical Applications

Onapsis and SAP partnered on the discovery and mitigation of a set of critical vulnerabilities affecting SAP applications actively using the SAP Internet Communication Manager (ICM) component. Read along for five things you should know about the ICMAD vulnerabilities.
ICMAD: Critical Vulnerabilities in SAP Business Applications Require Immediate Attention
02/08/2022 | By
Onapsis Research Labs
JP Perez-Etchegoyen
|
SAP Security, Research

ICMAD: Critical Vulnerabilities in SAP Business Applications Require Immediate Attention

Onapsis Research Labs discovered a set of extremely critical vulnerabilities affecting SAP applications actively using the SAP Internet Communication Manager (ICM) component. This discovery requires immediate attention by most SAP customers.
SAP Security Patch Day February 2022: Severe HTTP Smuggling Vulnerabilities in SAP NetWeaver
02/08/2022 | By
Thomas Fritsch
|
SAP Patch Day

SAP Security Patch Day February 2022: Severe HTTP Smuggling Vulnerabilities in SAP NetWeaver

SAP’s February Patch Tuesday brings new extremely critical vulnerabilities in all SAP applications that are based on SAP NetWeaver. SAP, CISA, and Onapsis strongly advise all impacted organizations to prioritize patching these affected systems as soon as possible.
Categories
The Defenders Digest

Onapsis CTO and Director of Threat Research monthly video recap all things ERP security.

Watch Now
Request a Demo from Onapsis

Ready to eliminate your SAP cyber security blindspot?

Let us show you how simple it can be to protect your business applications.

Request a demo