SecurityWeek

SAP Patches Critical CRM, S/4HANA, NetWeaver Vulnerabilities

SAP has released 26 new security notes, including two that address critical vulnerabilities in CRM, S/4HANA, and NetWeaver.
dbta

Addressing SAP’s SQL Injection Attacks and Directory Traversal Vulnerabilities

SAP platforms, used by 99 of the Fortune 100 companies and with over 280 million cloud subscribers worldwide, are among the most reliable business applications. As SAP administrators, your role in ...

Patch Day SAP CRM, S/4HANA: Attackers can damage databases

Due to a bug, authenticated attackers can execute SQL statements in the context of CRM and SAP S/4HANA (Scripting Editor), thus completely compromising databases (CVE-2026-0488 “ critical ”).
Bleeping Computer

SAP fixes hardcoded credentials flaw in SQL Anywhere Monitor

SAP has released its November security updates that address multiple security vulnerabilities, including a maximum severity flaw in the non-GUI variant of the SQL Anywhere Monitor and a critical code ...
Hosted on MSN

SAP fixes serious security issues - here's how to stay safe

CVE-2025-42887 in SAP Solution Manager allows unauthenticated code injection and full system takeover Vulnerability scored 9.9/10; patch released in SAP’s November 2025 update SAP also fixed ...
Bleeping Computer

SAP fixes three critical vulnerabilities across multiple products

SAP has released its December security updates addressing 14 vulnerabilities across a range of products, including three critical-severity flaws. The most severe (CVSS score: 9.9) of all the issues is ...
dbta

SAP Releases Major Update to SQL Anywhere

SAP has announced an update to SAP SQL Anywhere. Version 17 of the embeddable database technology enables Internet of Things (IoT) systems and data-intensive mobile apps to leverage new remote data ...