SAP
External Program
Submit bugs directly to this organization
SAP
#Disclosure Guidelines for SAP Security Advisories
SAP takes the security of its products very seriously, with a comprehensive secure software development lifecycle process, clear quality and security standards for software development, and a dedicated Security Response process in place as the most visible evidences of its commitment. The SAP Security Response team is responsible for investigating all reported security vulnerabilities, working closely with reporters of vulnerabilities and SAP product development to provide patches, and informing customers about the patches and their importance. Since the integrity and security of business operations is crucial for businesses in all industries, SAP as a provider of business software is absolutely committed to maintaining the highest possible level of security within its products.
SAP encourages the responsible disclosure of security vulnerabilities. If you have detected a vulnerability in one of our software products – either in the latest or in a former product version – please inform us about the issue and follow the guidelines and processes in accordance with our Portal page.