On September 2021 Security Patch Day, SAP announced the release of 17 new and two updated security notes. Seven of these are related to serious flaws in SAP products.
The most critical of the newly issued security notes patches a problem with SAP NetWeaver Application Server for Java’s authorisation check. The vulnerability has a CVSS score of 10 and is tracked as CVE-2021-37535.
SAP also released two updated security notes, both of which are Hot News and have a CVSS score of 10. The first is a Business Client upgrade for the Chromium browser, while the second is a Business One patch for an unrestricted file upload vulnerability (which was initially addressed in August).
To Read More: Securityweek
For more such updates follow us on Google News ITsecuritywire News.