Posted by Onapsis Research Team on Sep 29

Onapsis Security Advisory 2015-022: SAP HANA SQL injection in
getSqlTraceConfiguration function

1. Impact on Business
=====================

By exploiting this vulnerability an attacker could read sensitive
business information stored in the HANA system and change configuration
parameters which could render the system unavailable for other users.

Risk Level: High

2. Advisory Information
=======================

– Public Release Date:…