The Cyber Wire: SAP fixes major bug
SAP has patched a significant vulnerability. The issue, CVE-2020-6287, arises in the LM Configuration Wizard of the NetWeaver Application Server.
Read more here