NetWeaver

Blog
digitpatroxMay 15, 2025
84

Ransomware gangs join ongoing SAP NetWeaver attacks

Ransomware gangs have joined ongoing SAP NetWeaver attacks, exploiting a maximum-severity vulnerability that allows threat actors to gain remote code execution on vulnerable servers. SAP released emergency patches on April 24 to address this NetWeaver Visual Composer unauthenticated file upload security flaw (CVE-2025-31324), days after it was first tagged by cybersecurity company ReliaQuest as targeted in the wild. Successful exploitation…
Read More »
Blog
digitpatroxMay 10, 2025
85

Chinese hackers behind attacks targeting SAP NetWeaver servers

Forescout Vedere Labs security researchers have linked ongoing attacks targeting a maximum severity vulnerability impacting SAP NetWeaver instances to a Chinese threat actor. SAP released an out-of-band emergency patch on April 24 to address this unauthenticated file upload security flaw (tracked as CVE-2025-31324) in SAP NetWeaver Visual Composer, days after cybersecurity company ReliaQuest first detected the vulnerability being targeted in…
Read More »
Blog
digitpatroxApril 29, 2025
72

Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw

Over 1,200 internet-exposed SAP NetWeaver instances are vulnerable to an actively exploited maximum severity unauthenticated file upload vulnerability that allows attackers to hijack servers. SAP NetWeaver is an application server and development platform that runs and connects SAP and non-SAP applications across different technologies. Last week, SAP disclosed an unauthenticated file upload vulnerability, tracked as CVE-2025-31324, in SAP NetWeaver Visual Composer,…
Read More »
Blog
digitpatroxApril 27, 2025
75

SAP fixes suspected Netweaver zero-day exploited in attacks

SAP has released out-of-band emergency NetWeaver updates to fix a suspected remote code execution (RCE) zero-day flaw actively exploited to hijack servers. The vulnerability, tracked under CVE-2025-31324 and rated critical (CVSS v3 score: 10.0), is an unauthenticated file upload vulnerability in SAP NetWeaver Visual Composer, specifically the Metadata Uploader component. It allows attackers to upload malicious executable files without needing…
Read More »
Blog
digitpatroxJanuary 15, 2025
147

SAP fixes critical vulnerabilities in NetWeaver application servers

SAP has fixed two critical vulnerabilities affecting NetWeaver web application server that could be exploited to escalate privileges and access restricted information. As part of the January Security Patch Day, the vendor also released updates for other products to patch 12 additional issues rated with medium and high severity. “SAP strongly recommends that the customer visits the Support Portal and applies…
Read More »

NetWeaver

Ransomware gangs join ongoing SAP NetWeaver attacks

Chinese hackers behind attacks targeting SAP NetWeaver servers

Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw

SAP fixes suspected Netweaver zero-day exploited in attacks

SAP fixes critical vulnerabilities in NetWeaver application servers

New on HBO Max in July 2025 — all the new shows and movies to watch

WhatsApp rolls out AI-generated summaries for private messages

Solos AirGo A5 and V2 Smart Glasses: Features, Price, and Release Date

How to enable or disable Start menu mobile sidebar on Windows 11

AI residencies are trying to change the conversation around artificial art

Today’s NYT Connections Hints and Answer for December 22 (#560)

The NCSC wants you to start using password managers and passkeys – here’s how to choose the best options

Roblox Mugen Style Tier List (June 2025)

Want to build more secure software? Follow these key memory safe language tips from CISA

Today’s AI models have a poor grasp of world history – Computerworld

FBI disrupts the Dispossessor ransomware operation, seizes servers

Wordle Answer for Today, August 13, 2024