/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
During an internal penetration test, your SAP landscape was flagged for the following vulnerability:
SAP Gateway 10KBLAZE Remote Code Execution * (RCE) Vulnerability
Potential for unauthenticated remote code execution via SAP Gateway / Message Server.
You want to locate documentation on how to secure and mitigate this vulnerability for the SAP Gateway and Message Server in your SAP ABAP/Java system.
Read more...
Environment
- SAP Netweaver ABAP and Java
- ABAP PLATFORM - Application Server ABAP
- SAP NetWeaver Application Server for SAP S/4HANA
- Operating System independent
- Database independent
Product
ABAP platform all versions ; SAP NetWeaver all versions ; SAP Web Application Server for SAP S/4HANA all versions
Keywords
10KBLAZE, Remote Code Execution, RCE, vulnerability, Gateway, Message Server, secure, ABAP, Java , KBA , BC-CST-GW , Gateway/CPIC , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)