Luckily, the flaws were fixed before hackers were able to find and exploit them. SAP has rushed to patch a zero-day security flaw in its HANA database platform before hackers had a chance to run riot with it. Security company Onapsis Research Labs originally uncovered the flaws that would have allowed hackers to compromise vulnerable database systems without the need for valid usernames and passwords. The cyber security flaws, now patched by SAP, include two SQL injection vulnerabilities and a flaw that allowed authenticated users to access information without the required privileges.
View full story
ORIGINAL SOURCE: Silicon