Hacker News with Generative AI: SAP

One Bug Wasn't Enough: Escalating Twice Through SAP's Setuid Landscape (anvilsecure.com)
It's not every day you get a chance to one-up your CTO and co-founder of the company you work for. In 2020, Vincent Berg published a blog post describing a vulnerability he found affecting an SAP setuid binary while preparing for a client project. Combined with an insecure NFS configuration, he was able to compromise a dozen UNIX machines during that client engagement.
SAP Databricks (databricks.com)
SAPwned: SAP AI vulnerabilities expose customers' cloud environments and privat (wiz.io)
SAP sends unsolicited emails asking OSM Foundation to fill supplier assessments (osm.town)
Oracle Fusion rollout costs 15 times council's estimates in SAP rip-'n-replace (theregister.com)