SAP fixed 26 flaws in August 2025 Update, including 4 Critical

SAP’s August 2025 Patch Tuesday addresses 26 vulnerabilities, including critical code injection flaws in SAP S/4HANA and SAP Landscape Transformation, potentially allowing system compromises. These updates highlight ongoing risks related to privilege escalation and system breaches targeting SAP systems. #CVE202542957 #CVE202542950

Keypoints

August 2025 Patch Tuesday fixes 15 new security issues and four older vulnerabilities.
Critical vulnerabilities with a CVSS score of 9.9 involve code injection in SAP S/4HANA and SAP Landscape Transformation.
Attackers with user privileges can inject ABAP code, potentially compromising entire systems.
An update addresses broken authorization in SAP Business One, enabling database admin access via API.
These patches emphasize the importance of timely updates to mitigate severe security risks in SAP environments.

SHARE THIS STORY

WhatsApp X (Twitter)Telegram Bluesky Facebook LinkedIn Threads Email Print