SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. This includes a cross-site scripting vulnerability (CVE-2020-6284) in NetWeaver (Knowledge Management). CISA encourages users and administrators to review the SAP Security Notes and apply the necessary updates. Read the advisory at CISA.
Early bird registration for H2OSecCon 2024 is now open! - REGISTER HERE