SAP’s February 2023 Security Updates Patch High-Severity Vulnerabilities


This week, SAP, a manufacturer of enterprise software, announced the availability of 26 notes, including 21 new and five revised notes, for its February 2023 Security Patch Day. The most serious of these notes provides updates for the Chromium web browser in the SAP Business Client, fixing a total of 54 vulnerabilities, including 22 high-severity ones. This month, SAP issued five new and revised high-priority notes to address issues with the SAP Start Service, BASIS, BusinessObjects, and Business Planning and Consolidation products. The most serious of the new notes fixes a privilege escalation flaw in Start Service (CVE-2023-24523, CVSS score of 8.8) that may have an effect on availability, confidentiality, and integrity.

Read More…