TTCSIRT-368.10.14.20: TT-CSIRT ADVISORY – SAP October 2020 Security Updates

SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

This includes an OS command injection vulnerability (CVE-2020-6364) affecting SAP Solution Manager and SAP Focused Run.
 
Administrators are encouraged to review and apply the necessary updates.

For further information and support, please visit the following link:
SAP Security Notes for October 2020