See every side of every news story
Get Started
SubscribeLogin
Israel-Hamas Conflict
Pope Francis
NFL
Vatican
Catholic Church
South America
Volodymyr Zelenskyy
Vladimir Putin
Real Madrid
Social Media
Donald Trump
Premier League
Baseball
Published loading...Updated

SAP fixes critical Netweaver flaw exploited in attacks

Summary by BleepingComputer
SAP has released out-of-band emergency updates for NetWeaver to fix an actively exploited remote code execution (RCE) vulnerability used to hijack servers.

10 Articles

All
Left
Center
3
Right
CyberScoopCyberScoop
Center

SAP zero-day vulnerability under widespread active exploitation

Threat hunters and security researchers have observed widespread exploitation of a zero-day vulnerability affecting SAP NetWeaver systems. The unrestricted file upload vulnerability — CVE-2025-31324 — has a base score of 10 on the CVSS scale and allows attackers to upload files directly to the system without authorization.  The software defect, which affects the SAP Visual Composer component for SAP NetWeaver, was discovered and published by Rel…

Read Full Article
Cybersecurity DiveCybersecurity Dive
Center

Critical vulnerability in SAP NetWeaver under threat of active exploitation

Attackers have been observed dropping webshell backdoors and researchers warn the application is popular among government agencies.

Read Full Article
BleepingComputerBleepingComputer
Center

SAP fixes critical Netweaver flaw exploited in attacks

SAP has released out-of-band emergency updates for NetWeaver to fix an actively exploited remote code execution (RCE) vulnerability used to hijack servers.

Read Full Article
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

A critical vulnerability (CVE-2025-31324) in SAP NetWeaver Visual Composer puts systems at risk of full compromise. Learn how… This article has been indexed from Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto Read the original article: SAP NetWeaver… Read more → The post SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells appeared first on IT Security News.

Read Full Article
CSO OnlineCSO Online

SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability

Attackers have been exploiting a critical zero-day vulnerability in the Visual Composer component of the SAP NetWeaver application server since early this week. SAP released an out-of-band fix that’s available through its support portal and it should be applied immediately, especially on systems that are directly exposed to the internet. “Unauthenticated attackers can abuse built-in functionality to upload arbitrary files to an SAP NetWeaver ins…

Read Full Article
Malware Analysis, News and IndicatorsMalware Analysis, News and Indicators

SAP patches zero day rated 10.0 in NetWeaver

Attackers observed exploiting vulnerability in SAP's NetWeaver Visual Composer product. Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for …

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center
Factuality

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

BleepingComputer broke the news in on Friday, April 25, 2025.
Sources are mostly out of (0)

Similar News Topics

You have read out of your 5 free daily articles.

Join us as a member to unlock exclusive access to diverse content.

News
For You
SearchBlindspotLocal