The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert on a Critical Vulnerability in SAP NetWeaver AS Java. An unauthenticated attacker can exploit this vulnerability through the Hypertext Transfer Protocol (HTTP) to take control of trusted SAP applications. SAP has released a security update to address a critical vulnerability, CVE-2020-6287.
CISA encourages…