A new exploit chain targeting SAP NetWeaver vulnerabilities CVE-2025-31324 and CVE-2025-42999 has been released in the wild, leading to remote code execution and system compromise. Organizations using unpatched systems are at increased risk of attack from cybercriminal groups and nation-state actors. #SAPNetWeaver #ScatteredSpider
Keypoints
- A new exploit chain abuses two critical SAP NetWeaver vulnerabilities for system compromise.
- The vulnerabilities include a missing authorization check and insecure deserialization.
- Threat actors, including ransomware gangs and Chinese APTs, previously exploited these flaws.
- The newly released exploit could be reused for other SAP application attack vectors.
- Many SAP systems remain unpatched, increasing the risk of targeted cyberattacks.
Read More: https://www.securityweek.com/new-exploit-poses-threat-to-sap-netweaver-instances/