News

Emergency patch for potential SAP zero-day that could grant full system control
According to SAP security platform Onapsis, the vulnerability has indeed already been exploited as a zero-day and can afford ...
SecurityWeek1d
SAP Zero-Day Possibly Exploited by Initial Access Broker
A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications. Over 10,000 SAP ...
The Hacker News1d
New Critical SAP NetWeaver Flaw Exploited to Drop Web Shell, Brute Ratel Framework
The web shells grant the threat actor the ability to execute arbitrary commands in system context, with the privileges of the ...
SAP fixes suspected NetWeaver zero-day exploited in attacks
SAP has released out-of-band emergency NetWeaver updates to fix a suspected remote code execution (RCE) zero-day flaw ...
Infosecurity Magazine3d
SAP Fixes Critical Vulnerability After Evidence of Exploitation
German software company SAP has finally disclosed and fixed a highly critical vulnerability in the NetWeaver Visual Composer ...
Techzine Europe9h
SAP patches zero-day vulnerability in NetWeaver, denies exploitation
SAP has released emergency patches for a critical zero-day vulnerability in NetWeaver. The security flaw allows malicious ...
CSO Online2d
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability
The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant ...
it-daily.net9h
Critical security vulnerability discovered in SAP NetWeaver
Security experts have identified a serious security vulnerability in SAP NetWeaver that allows unauthorized access to company ...
Critical vulnerability in SAP NetWeaver under threat of active exploitation
Attackers have been observed dropping webshell backdoors and researchers warn the application is popular among government ...