/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
MAL-2025-20556 is detected in NPM package filter-node-package from Malicious code Scan:
The library filter-node-package version 1.2.1 was detected in NPM library manager located at /hana/shared/<SID>/xs/app_working/embedded_execagent/executionroot/<GUID...>/app/package-lock.json on line xxxx and is considered malicious and tracked under MAL-2025-20556.
Read more...
Environment
SAP HANA Cockpit 2.0
Product
SAP HANA Cloud all versions ; SAP HANA, platform edition 2.0
Keywords
apps, xsa, CL0A2860, cockpit-hdbui-svc, cockpit-ui5-svc, ockpit-message-svc, cockpit-web-app , KBA , HAN-CPT-CPT2-SEC , SAP HANA Cockpit 2 (Security) , HAN-DB-SEC , SAP HANA Security & User Management , BC-XS-CDX-NJS , SAP CAP – node.js runtime , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)