Tag: SAP NetWeaver

SAP has released patches to address a second vulnerability, CVE-2025-42999, affecting its SAP NetWeaver tool. The vulnerability involves a privilege escalation issue that, when chained with SAP’s CVE-2025-31324 vulnerability (unauthenticated file upload flaw in SAP NetWeaver Visual Composer), can enable...

Vincent Yu / May 16, 2025

Cybersecurity Threat Advisory: Critical zero-day SAP vulnerability

Featured Security

Cybersecurity Threat Advisory: Critical zero-day SAP vulnerability

SAP published a critical vulnerability, CVE-2025-31324 with a CVSSv3 score of 10.0. The flaw is actively exploited in the wild. Successful exploitation can lead to arbitrary file uploads, leading to remote code execution (RCE) and full system compromise. Review this...

Vincent Yu / May 3, 2025

Categories

Tags

Archives

Tag: SAP NetWeaver

Cybersecurity Threat Advisory: SAP critical vulnerabilities

Cybersecurity Threat Advisory: Critical zero-day SAP vulnerability