Security News > 2025 > May > Week in review: Critical SAP NetWeaver flaw exploited, RSAC 2025 Conference

Week in review: Critical SAP NetWeaver flaw exploited, RSAC 2025 Conference
2025-05-04 07:42

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: RSAC 2025 Conference RSAC 2025 Conference took place at the Moscone Center in San Francisco. Check out our microsite for related news, photos, product releases, and more. Critical SAP NetWeaver flaw exploited by suspected initial access broker (CVE-2025-31324) CVE-2025-31324, a critical vulnerability in the SAP NetWeaver platform, is being actively exploited by attackers to upload malicious webshells to enable unauthorized … More → The post Week in review: Critical SAP NetWeaver flaw exploited, RSAC 2025 Conference appeared first on Help Net Security.


News URL

https://www.helpnetsecurity.com/2025/05/04/week-in-review-critical-sap-netweaver-flaw-exploited-rsac-2025-conference/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2025-04-24 CVE-2025-31324 Unspecified vulnerability in SAP Netweaver 7.50
SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system.
network
low complexity
sap
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
SAP 329 25 688 386 114 1213