Security News > 2017 > April > SAP Updates Two-Year-Old Patch for TREX Vulnerability (Threatpost)

SAP Updates Two-Year-Old Patch for TREX Vulnerability (Threatpost)

2017-04-12 15:18

SAP has issued an updated patch for a code-injection vulnerability affecting the TREX search engine integrated into more than a dozen SAP products.

News URL

http://threatpost.com/sap-updates-two-year-old-patch-for-trex-vulnerability/124936/

#patch #SAP #threatpost #vulnerability

Related news

Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)
MITRE Caldera RCE vulnerability with public PoC fixed, patch ASAP! (CVE-2025–27364) (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
SAP		329	25	687	385	114	1211

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.