Security News > 2017 > April > SAP closes critical vulnerability affecting TREX (Help Net Security)

SAP closes critical vulnerability affecting TREX (Help Net Security)
2017-04-12 19:21

SAP closed a critical vulnerability for an issue that was exposed for almost two years. The vulnerability (SAP Security Note 2419592) affects TREX, a SAP NetWeaver standalone search engine, which is deployed in over a dozen SAP products including SAP HANA. The identified security issue allows an attacker to anonymously perform sensitive operations that can be combined to execute a command on the server remotely. Originally, the vulnerability was discovered in SAP HANA in 2015 … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Vx-JA1qOFDo/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
SAP 329 25 680 386 113 1204