Security News > 2017 > April > SAP closes critical vulnerability affecting TREX (Help Net Security)
SAP closed a critical vulnerability for an issue that was exposed for almost two years. The vulnerability (SAP Security Note 2419592) affects TREX, a SAP NetWeaver standalone search engine, which is deployed in over a dozen SAP products including SAP HANA. The identified security issue allows an attacker to anonymously perform sensitive operations that can be combined to execute a command on the server remotely. Originally, the vulnerability was discovered in SAP HANA in 2015 … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/Vx-JA1qOFDo/
Related news
- Critical Ivanti Cloud Appliance Vulnerability Exploited in Active Cyberattacks (source)
- MFA bypass becomes a critical security issue as ransomware tactics advance (source)
- CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns (source)
- PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) (source)
- HPE patches three critical security holes in Aruba PAPI (source)
- Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers (source)
- Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) (source)
- Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
- Apple Releases Critical iOS and iPadOS Updates to Fix VoiceOver Password Vulnerability (source)
- Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)