Update #1 to Security Note 1536291, SAP security note 1557426

Description

Security note 1536291 that eliminates the vulnerability of an unauthorized execution of functions in CRM EP specifies an incorrect Support Package patch level.

The solution is available in CRM Release 7.01 as of Support Package 003 patch level 1.

The specified patch level 0 for Support Package 001 of CRM Release 7.01 (BP CRM FOUNDATION CODING 7.01, Support Package 001, patch level 0) is incorrect.

Available fix and Supported packages

CRMFND | 701 | 701

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected].

URL

https://launchpad.support.sap.com/#/notes/1557426

Arpine Maghakyan

Update #1 to Security Note 1536291, SAP security note 1557426

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Reflected-cross-site-scripting
#XSS
#CRM-portal-integration
#update
#update-note

More to explorer

Press release: RedRays discovered major cybersecurity leak affects 4800 domains

Urgent Security Notice: RedRays Discloses Major Data Breach Affecting SAP Customers

[CVE-2021-33690] Server Side Request Forgery vulnerability in SAP NetWeaver Development Infrastructure

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535

Arpine Maghakyan

Update #1 to Security Note 1536291, SAP security note 1557426

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Reflected-cross-site-scripting#XSS#CRM-portal-integration#update#update-note

More to explorer

Press release: RedRays discovered major cybersecurity leak affects 4800 domains

Urgent Security Notice: RedRays Discloses Major Data Breach Affecting SAP Customers

[CVE-2021-33690] Server Side Request Forgery vulnerability in SAP NetWeaver Development Infrastructure

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535

#Reflected-cross-site-scripting
#XSS
#CRM-portal-integration
#update
#update-note