URL has been copied successfully!
Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution


Tags: , , , , , , ,

A new exploit combining two critical, now-patched security flaws in SAP NetWeaver has emerged in the wild, putting organizations at risk of system compromise and data theft.The exploit in question chains together CVE-2025-31324 and CVE-2025-42999 to bypass authentication and achieve remote code execution, SAP security company Onapsis said.CVE-2025-31324 (CVSS score: 10.0) – Missing

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/08/public-exploit-for-chained-sap-flaws.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. April Patch Tuesday news: Windows zero day being exploited, ‘big vulnerability’ in 2 SAP apps
  2. Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on
  3. Top 12 ways hackers broke into your systems in 2024
  4. China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures