Number: AV22-063
Date: 8 February 2022
On 8 February 2022 SAP published Security Advisories to address vulnerabilities in multiple products. Included were critical updates for the following:
- SAP Web Dispatcher – versions 7.49, 7.53, 7.77, 7.81, 7.85, 7.22EXT, 7.86 and 7.87
- SAP Content Server – version 7.53
- SAP NetWeaver and ABAP Platform – multiple versions
- SAP Commerce – versions 1905, 2005, 2105 and 2011
- SAP Data Intelligence (on-premise) – version 3
- Internet of Things Edge Platform – version 4.0
- SAP Customer Checkout – version 2
- SAP Business Client – version 6.5
- SAP Solution Manager (Diagnostics Root Cause Analysis Tools) – version 720
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
SAP Security Patch Day – February 2022
Active Exploitation of Apache Log4j Vulnerability (AL21-019)