Threat and Vulnerability Management

SAP HANA User Self Service Vulnerabilities

Provided by Onapsis

Category Threat and Vulnerability Management

Type White Paper

Length 3

Publish Date March 13 2017

Date posted May 10 2017


As part of our commitment to protect our customers’ business critical applications and key business data, the Onapsis Research Labs continuously analyze threats and attack vectors affecting SAP applications. As a result of these proactive efforts, we have identified multiple vulnerabilities that could be leveraged by attackers to perform two critical attacks in SAP HANA, depending on the active services. These attacks consist of a full system compromise without any type of previous authentication.

While SAP has provided a patch for these vulnerabilities, we understand that organizations may not be able to immediately implement, or take a system offline to configure this patch. In the meantime, the following document serves as a work around to mitigate or reduce risk to your SAP HANA environment.

Recommended for You


Why does China spot security vulnerabilities quicker than the US?

Phil Muncaster reports on China and beyond


Everything you need to know about... Blockchain

IDG Connect tackles the tech stories that matter to you


What will be the single biggest security threat of 2018?

Kathryn Cave looks at the big trends in global tech

Most Recent Comments

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.


Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.



If it were legal, would your organization hack back?