SAP patches critical command injection vulnerabilities


SAP, an enterprise software company, issued ten new and two updated security notes on Tuesday as part of its March 2024 Security Patch Day, highlighting serious bugs in business-facing products.

Three of the notes are marked ‘hot news’ (the highest severity rating in SAP’s playbook), and they address critical vulnerabilities in the Chromium browser in Business Client, Build Apps, and NetWeaver AS Java. The most severe is an update that adds the most recent Chrome patches to Business Client.

The update, which brings Chromium to version 121.0.6167.184, fixes 29 security flaws in the browser, including two critical-severity bugs and 15 high-severity issues.

Read More: SAP Patches Critical Command Injection Vulnerabilities

Check Out The New ITsecuritywire Podcast. For more such updates follow us on Google News ITsecuritywire News.