Did you know a severe security vulnerability in the SAP NetWeaver Application Server (AS) was just discovered? SAP is working hard to address this critical security update, which can potentially affect at least 40,000 SAP customers worldwide!
The Recon (Remotely Exploitable Code on NetWeaver) bug was just assigned a CVSS score of 10, the highest threat possible. This bug resides in a default core application and can be remotely exploited by an unauthenticated attacker through HTTP protocol to take control of SAP applications that face the public internet.
How can Recon affect your SAP environment:
- An attacker could potentially create a new admin with the highest level of security credentials.
- This admin could then take full control of the system.
- They would have the ability to read, write, modify, and delete things like database records and files.
- Data could be stolen, and banking details could be changed, purchasing processes could be administered.
- System operations could be corrupted or shut down.
- Unrestricted actions could be performed through OS command execution, and delete/modify traces, logs, and more.
Potential SAP solutions at risk are SAP Enterprise Portal, PI/XI, SAP CRM, SAP SCM, and SAP S/4HANA. If a significant security breach weren’t enough for an organization, this vulnerability likely would also constitute regulatory violations of the EU’s General Data Protection Regulation (GDPR) and the US’ Sarbanes-Oxley regulations.
At this very moment, there are two ways to address this gaping security risk, either immediately patch with the appropriate SAP Security Notes or disable affected Configuration Wizard services. Additionally, American Digital strongly recommends closely monitoring your SAP NetWeaver AS for anomalous activity, which we can provide.
Timing is key.
Let American Digital’s SAP Security experts help.
Please reach out to our Director of SAP Operations, Michael Johnson, today to secure your SAP systems. Michael can be reached via email at michaelj@americandigital.com or via phone at 847-637-4312.