SAP vulnerabilities

The Onapsis Blog

The world of business-critical application security is dynamic, with new developments happening on a continuous basis. Check out our blog for recommendations, insights and observations on the latest news for securing your SAP®, Oracle® and Salesforce applications.

11/14/2023 | By

Thomas Fritsch

|

SAP Patch Day

SAP Patch Day: November 2023

Very Calm Patchday with Critical Patch for SAP Business One

Read more about SAP Patch Day: November 2023

10/10/2023 | By

Thomas Fritsch

|

SAP Patch Day

SAP Patch Day: October 2023

SAP’s October Patch Day was extremely calm. The only Hot News Note is an update of SAP Security Note #2622660 which provides regular patches for SAP Business Client, including the latest tested Chromium patches. The rest of the published SAP Security Notes are of Medium Priority.

Read more about SAP Patch Day: October 2023

09/12/2023 | By

Thomas Fritsch

|

SAP Patch Day

SAP Patch Day: September 2023

Critical Patches for SAP BusinessObjects and SAP CommonCryptoLib released

Read more about SAP Patch Day: September 2023

08/08/2023 | By

Thomas Fritsch

|

SAP Patch Day

SAP Patch Day: August 2023

New HotNews Note for SAP PowerDesigner and Important Update on July HotNews Note

Read more about SAP Patch Day: August 2023

P4CHAINS Vulnerabilities Review with Onapsis

04/11/2023 | By

JP Perez-Etchegoyen

|

Research

P4CHAINS Vulnerabilities

Onapsis reviews the p4chains vulnerability and how vulnerability changing plays a role in this family of vulnerabilities.

Read more about P4CHAINS Vulnerabilities

SAP Security Patch Day September 2022: High Priority Patches Released for SAP Business One, SAP BusinessObjects, and SAP GRC

09/13/2022 | By

Thomas Fritsch

|

SAP Patch Day

SAP Security Patch Day: September 2022

SAP Patch Day for September 2022 includes 16 new and updated Security Notes (including the notes that were released or updated since last Patch Tuesday).

Read more about SAP Security Patch Day: September 2022

07/13/2022 | By

JP Perez-Etchegoyen

|

SAP Security

Q&A With Onapsis CTO JP Perez-Etchegoyen: Recent Active SAP Exploitation Activity

CTO JP Perez-Etchegoyen answers six questions around recent SAP application exploitation activity and shares tips for SAP security and next steps organizations can take to protect their critical systems.

Read more about Q&A With Onapsis CTO JP Perez-Etchegoyen: Recent Active SAP Exploitation Activity

Three Actively Exploited SAP Vulnerabilities Identified by Onapsis Research Labs: What You Need to Know

06/09/2022 | By

JP Perez-Etchegoyen

|

Research

Three Actively Exploited SAP Vulnerabilities Identified by Onapsis Research Labs: What You Need to Know

The Onapsis Research Labs detected active exploitation activity related to three vulnerabilities that were already patched by SAP.

Read more about Three Actively Exploited SAP Vulnerabilities Identified by Onapsis Research Labs: What You Need to Know

Why Now Is the Time to Protect Your Business-Critical SAP Applications

05/03/2022 | By

Maaya Alagappan

|

SAP Security

Why Now Is the Time to Protect Your Business-Critical SAP Applications

Now is the time to secure your business-critical SAP applications.

Read more about Why Now Is the Time to Protect Your Business-Critical SAP Applications

ICMAD: Critical Vulnerabilities in SAP Business Applications Require Immediate Attention

02/08/2022 | By

Onapsis Research Labs

JP Perez-Etchegoyen

|

SAP Security, Research

ICMAD: Critical Vulnerabilities in SAP Business Applications Require Immediate Attention

Onapsis Research Labs discovered a set of extremely critical vulnerabilities affecting SAP applications actively using the SAP Internet Communication Manager (ICM) component. This discovery requires immediate attention by most SAP customers.

Read more about ICMAD: Critical Vulnerabilities in SAP Business Applications Require Immediate Attention

Ready to eliminate your SAP cyber security blindspot?