US EditionSAP patches recently exploited zero-day in wake of NetWeaver server attacks
- SAP released patches in April and May 2025 to fix two zero-day vulnerabilities, CVE-2025-31324 and CVE-2025-42999, exploited in NetWeaver server attacks.
- These vulnerabilities, discovered amid ongoing investigations, were chained in attacks starting January 2025 and targeted numerous enterprises including Fortune 500 companies.
- Attackers used unauthenticated file uploads to deploy web shells and remote code execution tools, compromising over 470 SAP NetWeaver instances exposed online worldwide.
- Patrice Auffret, CTO of Onyphe, revealed that approximately twenty major corporations listed in the Fortune 500 or Global 500 were at risk, with a significant number already affected by security breaches.
- SAP and security firms urge administrators to patch systems immediately, restrict access, and monitor for threats, while agencies like CISA enforce compliance due to risks of espionage and data exfiltration.
19 Articles
19 Articles
SAP cyberattack widens, drawing Salt Typhoon and Volt Typhoon comparisons
Hundreds of victims are surfacing across the world from zero-day cyberattacks on Europe’s biggest software manufacturer and company, in a campaign that one leading cyber expert is comparing to the vast Chinese government-linked Salt Typhoon and Volt Typhoon breaches of critical infrastructure. The zero-days — vulnerabilities previously unknown to researchers or companies, but that malicious hackers have discovered — got patches this month and la…
Safeguarding SAP Systems Amid Rising Financial Fraud and Economic Stress
Download the full report SAP systems are the backbone of enterprise finance—and they’re under attack. As economic pressures rise, so do attempts to exploit financial platforms. From insider threats to ransomware and zero-day vulnerabilities, SAP’s critical role in handling billions of dollars daily makes it a high-value target. The recent disclosure of CVE-2025-31324, a critical zero-day in SAP NetWeaver (CVSS 10.0), exposed just how urgent the …
SAP patches recently exploited zero-day in wake of NetWeaver server attacks - WorldNL Magazine
Image Credit: SAP (Image credit: SAP) SAP fixed CVE-2025-42999, a 9.1/10 vulnerability in NetWeaverThis one was chained with CVE-2025-31324, which was fixed in AprilFortune 500 companies are apparently at riskSAP has patched a critical-severity zero-day vulnerability in NetWeaver server that was being chained in attacks targeting some of the world’s biggest enterprises.The vulnerability is tracked as CVE-2025-42999, and carries a severity score…
Coverage Details
Bias Distribution
- 100% of the sources are Center
To view factuality data please Upgrade to Premium
Ownership
To view ownership data please Upgrade to Vantage
