SAP Knowledge Base Article - Preview

3198099 - Security vulnerabilities detected by 3rd party scans


Third party security scans/Penetration test report errors like (but not limited to) the following:

  • [Possible] BREACH Attack Detected

  • HTTP Security Header Not Detected

  • "Open redirect ...."
    "Vulnerable endpoint.."

  • XSS open redirect



  • SAP Basis

  • SAP NetWeaver

  • SAP Web Application Server for SAP S/4 HANA

  • ABAP PLATFORM - Application Server ABAP


Vulnerable javascript library,, XSS , KBA , BC-MID-ICF , Internet Communication Framework , BC-SEC-SSL , Secure Sockets Layer Protocol , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.