SAP Vulnerability Puts Business Data at Risk for Thousands of Companies Posted on March 22, 2017 by Simon Steed Researchers at ERPScan today disclosed details and a proof-of-concept exploit for a SAP GUI remote code execution vulnerability patched last week.