About this tag
The invoker servlet is a built-in component in SAP NetWeaver Application Server Java systems that has been associated with a known vulnerability. Exploitation of the invoker servlet was observed in attacks against SAP business applications, as documented in a 2016 alert. The vulnerability was patched by SAP in 2010, but outdated or misconfigured systems remain at risk. Discussions on WindowsForum.com highlight the security implications of the invoker servlet, emphasizing the need for proper configuration and timely patching to prevent exploitation.
-
TA16-132A: Exploitation of SAP Business Applications
Original release date: May 11, 2016 Systems Affected Outdated or misconfigured SAP systems Overview At least 36 organizations worldwide are affected by an SAP vulnerability Link Removed. Security researchers from Onapsis discovered indicators of exploitation against these organizations’ SAP...- News
- Thread
- business applications cloud security crm erp exploitation governance invoker servlet mitigation onapsis patch management plm regulatory compliance remote access risk management sap scm security threat intelligence vulnerability
- Replies: 0
- Forum: Security Alerts