Security News > 2017 > April > SAP closes critical vulnerability affecting TREX (Help Net Security)

SAP closed a critical vulnerability for an issue that was exposed for almost two years. The vulnerability (SAP Security Note 2419592) affects TREX, a SAP NetWeaver standalone search engine, which is deployed in over a dozen SAP products including SAP HANA. The identified security issue allows an attacker to anonymously perform sensitive operations that can be combined to execute a command on the server remotely. Originally, the vulnerability was discovered in SAP HANA in 2015 … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Vx-JA1qOFDo/