SAP's latest Security Patch Day addresses 21 new and 4 updated vulnerabilities, including four critical flaws with CVSS scores up to 10.0, posing severe risks to enterprise systems, with the most critical allowing unauthenticated remote code execution in SAP NetWeaver. Other critical issues include arbitrary file upload, directory traversal, and missing authentication checks.
Latest mentioned: 09-09
Earliest mentioned: 09-09