SAP Alert
2690Warning Date
Severity Level
Warning Number
Target Sector
11 May, 2022
● High
2022-4804
All
SAP has released security updates to address multiple vulnerabilities in the following products:
- SAP HANA Extended Application Services
- SAP Customer Checkout
- Sybase PowerDesigner Web
- SAP Customer Profitability Analytics
- SAP Commerce
- SAP Business One Cloud
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
- Execute arbitrary code
- Denial of service attack (DoS)
- Information Disclosure
The CERT team encourages users to review SAP security advisory and apply the necessary updates: