SAP Trust Center
Report a security issue
SAP is committed to identifying and addressing security issues that affect our software and cloud solutions. We are continuously working on improving our security processes. To report a potential security issue, choose from the options below.
Report a customer security issue to find a solution and get real-time support from an expert.
Inform the SAP Product Security Response Team of a security issue by completing and submitting the security vulnerability form.
Inform the SAP Product Security Response Team of a security issue by submitting the form.
Note: Include the following details in the report, as applicable, so that we can better analyze the nature and scope of the security issue: issue category, affected product version with support package and patch level, necessary pre- and post-conditions for the exploit to work, description with proof of concept or exploit code, and impact of the issue if exploited.
If you want to report a vulnerability to SAP and don’t want to use the form above, you can write to our mailbox instead. Please ensure to encrypt your e-mail using the keyfile below and write to firstname.lastname@example.org.
SAP Security Patch Day
Fix vulnerabilities discovered in SAP products
Review notes from our monthly SAP Security Patch Day to learn about vulnerabilities discovered in SAP products and apply patches to protect your SAP landscape.
Join us in acknowledging our security researchers
Learn about the security researchers who help us identify and solve security vulnerabilities, so we can help maintain the security and safety of our customers and partners.
Breach notification and incident management practices
Stay informed of data breaches and incidents
Learn about breach notification and incident management practices from SAP and how we keep customer data secure in the event of a cyberattack.
My Trust Center
Access additional information for customers and partners
Visit My Trust Center, an area within SAP Support Portal for SAP Trust Center that extends the public offering by granting access to additional documentation available only to SAP customers and partners with a valid SAP user ID.