Cookies
By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.


Read the full Wiz article here: https://www.wiz.io/blog/sapwned-sap-ai-vulnerabilities-ai-security
September 11, 2024
At Cleardox, we recognize that AI platforms are powerful tools, but they also require strong safeguards. The discovery by Wiz is a reminder that securing data in complex environments is an ongoing challenge for all of us in this industry, and that’s why at Cleardox we work towards how we can learn from these findings to further enhance data protection and use tools like SAP AI Core in a safe way - the inspiration behind the beginning of Cleardox and our anonymization software tool.
These risks highlight the complexity of protecting sensitive data within AI environments, and at Cleardox we believe that with the right tools, we can reduce these risks and safeguard your data more effectively.
In our Cleardox team we’re committed to advancing data protection through our redaction software. Our anonymization software is designed to help businesses secure sensitive information, so that your data remains protected, but the valuable data is still shareable in a safe way. We don’t want to erase all the data, actually we want the opposite for businesses: to make it easier to share documents but with intelligence.
Our redaction software is specifically built to remove or hide sensitive information, making it inaccessible to unauthorized users. Similarly, our intuitive and effective anonymization process ensures that personal data is made anonymous, making it impossible to trace back to individuals.

It is because we understand the gravity of data protection, and our approach is driven by a deep passion for helping organizations navigate these challenges with confidence. Our commitment to anonymization isn’t just about meeting industry standards—it’s about providing a reliable solution that ensures, that every person involved gets more peace of mind regarding safeguarding data -whether it be the person or organization whose sensitive data is being managed, or it be the people who does the anonymization themselves and deals with that tremendous workload. The people involved are the driving force behind our work and the reason Cleardox exists. Additionally, we work closely with our users when designing our redaction tool, taking their needs and input into account, and we will continue to do so.
At Cleardox, we believe that protecting data in AI-driven environments is a shared responsibility. We’re here to support you every step of the way, ensuring your sensitive information stays secure while you harness the full potential of AI.
Contact us to get a trial period of Cleardox or learn more about us and the best solutions for you and your organization.


Wiz Research identified several key risks in SAP AI Core, including potential exposure of sensitive customer data, risks to data integrity, and inadequate system isolation. In some cases, these vulnerabilities could also allow malicious code execution, increasing the risk of data leaks and unauthorized access.

AI enterprise platforms process large amounts of sensitive and valuable data, often across complex systems and integrations. This makes them attractive targets for attackers and increases the risk of unintended data exposure if proper safeguards are not in place.

If sensitive data is exposed, it can lead to loss of customer trust, reputational damage, and potential legal consequences. In AI systems specifically, exposed data can also affect how models behave, reducing reliability and undermining confidence in the system’s outputs.

Vulnerabilities such as weak isolation between systems or unauthorized access points can be exploited by attackers to gain entry to sensitive datasets. Once inside, they may extract, manipulate, or leak data, resulting in a full-scale data breach.

Data protection in AI environments depends on both the platform provider and the organizations using the system. While providers must ensure secure infrastructure, users are responsible for handling data correctly, applying proper redaction or anonymization, and following security best practices.