SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers

SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers

/in

Threat actors are likely exploiting a new vulnerability in SAP NetWeaver to upload JSP web shells with the goal of facilitating unauthorized file uploads and code execution. 
“The exploitation is likely tied to either a previously disclosed vulnerability like CVE-2017-9844 or an unreported remote file inclusion (RFI) issue,” ReliaQuest said in a report published this week.
The cybersecurity

The Hacker News – ​Read More

RSA Conference 2025 – Pre-Event Announcements Summary (Part 2) Why NHIs Are Security’s Most Dangerous Blind SpotWhy NHIs Are Security’s Most Dangerous Blind Spot