Services
Research
Blog
Help
Pricing
Download
hexway » Blog » CYBERSECURITY NEWS V. 23.07 - Critical SAP Bug
23 July 2020

CYBERSECURITY NEWS V. 23.07 – Critical SAP Bug

hexway cybersecurity blog brings you the latest news about attacks and data breaches, emerging malware, and vendor security updates with comments from our experts

Critical SAP Bug 

A recently discovered SAP bug gain severity score 10 from 10. Its successful exploitation could lead to a full compromise of the enterprise internal systems. Attackers would be able to erase data and execute code. Vulnerability got CVE-2020-6287 and presented in every SAP system that runs SAP NetWeaver Java technology stack which does not perform an authentication check. Affected SAP NetWeaver AS JAVA versions include 7.30, 7.31, 7.40, 7.50. Overall the bug poses threat to almost 40000 SAP customers all over the globe.

hexway commentary:

Critical bugs in SAP are unusual occurrences, especially as critical bugs as this one. (This is all because there are not so many companies in the world that specialize in the SAP security systems).

The detected vulnerability is critical, easy to exploit, and could cause a lot of troubles. But there is good news, the vulnerability is easy to fix. So it’s recommended that all SAP systems owners do not delay the SAP notes installation (this is the so-called SAP patches). One of our researchers has developed a utility that will help you check whether your SAP system is vulnerable to vulnerabilities CVE-2020-6287, CVE-2020-6286 or not.

 

Popular
25 February 2021
cybersecurity-news-v-25-02-silver-sparrow-watchdog-mines-cryptocurrency-kia-motors-america-hit-by-doppelpaymer
Read
17 February 2021
cybersecurity-news-v-17-02-0-day-in-webkit-avaddondecrypter-12-year-old-bug-in-windows-defender
Read
10 February 2021
cybersecurity-news-v-10-02-morse-code-in-malicious-urls-chrome-update-cd-projekt-red-hit-by-ransomware
Read
19 November
2020
CYBERSECURITY NEWS V. 19.11 –...

hexway cybersecurity blog brings you the latest news about attacks and data breaches, emerging malware, and vendor security updates with […]

24 April
2020
CYBERSECURITY NEWS V. 4.24 –...

Maze Ransomware hits Cognizant Cognizant, a large IT services company with almost 300,000 employees and over $15 billion in revenue, […]

2 February
2021
CYBERSECURITY NEWS V. 02.02 –...

hexway cybersecurity blog brings you the latest news about attacks and data breaches, emerging malware, and vendor security updates News […]

Subscribe to be notified about our updates and new research

    © Hexway
    Privacy policy
    Contacts
    How to get started with Hive
    You’re one step away from the Hive

      We need it to send the guide
      I agree to the processing of my personal data
      Your mail is send!
      Thank you for trust!
      Back
      Contact us

        I agree to the processing of my personal data
        Your mail is send!
        Thank you for trust!
        Back
        Contact us

          I agree to the processing of my personal data
          Your mail is send!
          Thank you for trust!
          Back