Security News > 2020 > August > Intel, SAP, and Citrix release critical security updates
August 2020 Patch Tuesday was expectedly observed by Microsoft and Adobe, but many other software firms decided to push out security updates as well.
The German software corporation known for its enterprise software marked its Security Patch Day with the release of 15 security notes and an update to a previously released one.
Patches have been provided for flaws in a variety of offerings, including SAP ERP, SAP Business Objects Business Intelligence Platform, SAP S/4 HANA and various SAP NetWeaver components.
The most critical among the vulnerabilities fixed is CVE-2020-6284, a XSS vulnerability in the Knowledge Management component of NetWeaver AS. Citrix's updates.
Citrix has released patches for a set of vulnerabilities in certain on-premises instances of Citrix Endpoint Management.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/nM0NKK0N9Ws/
Related news
- MFA bypass becomes a critical security issue as ransomware tactics advance (source)
- HPE patches three critical security holes in Aruba PAPI (source)
- Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- China’s infosec leads accuse Intel of NSA backdoor, cite chip security flaws (source)
- Tesla, Intel, deny they're the foreign company China just accused of making maps that threaten national security (source)
- HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-12 | CVE-2020-6284 | Cross-site Scripting vulnerability in SAP Netweaver Knowledge Management SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows the automatic execution of script content in a stored file due to inadequate filtering with the accessing user's privileges. | 8.5 |