The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant full access to servers and allow installing additional malware payloads.
SAP fixed CVE-2025-42999, a 9.1/10 vulnerability in NetWeaver This one was chained with CVE-2025-31324, which was fixed in April Fortune 500 companies are apparently at risk SAP has patched a critical ...
SAP has released fixes for 15 vulnerabilities as part of its June 2026 Security Patch package, including four critical-severity flaws affecting SAP NetWeaver and SAP Commerce Cloud. NetWeaver is SAP's ...
SAPVista announced an expansion of its SAP server access portfolio with new environments for BTP, AI Core, and SAP Joule. The update adds SAP PEO, SAP IS OIL with S4HANA, and SAP ISU with S4HANA, ...
SAP SE SAP has announced the forthcoming release of “RISE with SAP on IBM Power Virtual Server.” This new hyperscaler solution offers IBM Power customers a streamlined and efficient pathway to ...