Skip links
Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

Disable S_TCC_* functions for heightened security, SAP security note 1439983

Description

This SAP Release contains function modules in the area of Central Technical Configuration (CTC) which are not needed and may contain content that could be used maliciously.

Available fix and Supported packages

  • SAP_BASIS | 701 | 702
  • SAP_BASIS | 710 | 720
  • SAP_BASIS 710 | SAPKB71010 |
  • SAP_BASIS 711 | SAPKB71105 |
  • SAP_BASIS 720 | SAPKB72003 |
  • SAP_BASIS 701 | SAPKB70107 |
  • SAP_BASIS 702 | SAPKB70204 |

Affected component

    BC-INS-CTC
    Central technical configuration

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1439983

TAGS

#CTC
#S_TCC_ITSAM_SYSIDTAB_COPY
#S_TCC_BW_AFTER_COPY
#S_TCC_ITSAM_INCIDENT_REFRESH

More to explorer

SAP Cloud Connector Certificate Validation Issue

Date of Release: February 13, 2024 Advisory ID: CVE-2024-25642 Affected Software: SAP Cloud Connector Versions Affected: 2.15.0 to 2.16.1 Vulnerability Summary:A critical vulnerability,