SAP has released security updates to address vulnerabilities
affecting multiple products. An attacker could exploit some of these
vulnerabilities to take control of an affected system. This includes an OS
command injection vulnerability (CVE-2020-6364) affecting SAP Solution Manager
and SAP Focused Run.
CERT Bulgaria encourages users and administrators to review the SAP
Security Notes for October 2020 and apply the necessary updates.