Summary: SAP has issued emergency updates for NetWeaver to address a critical vulnerability (CVE-2025-31324) that enables unauthorized file uploads, leading to potential remote code execution. The flaw, affecting the Visual Composer component, is currently being exploited, resulting in the compromise of multiple customers’ systems. Users are urged to apply the latest patch immediately to mitigate risks associated with this zero-day exploit.
Affected: SAP NetWeaver Visual Composer
Keypoints :
- CVE-2025-31324 is a critical unauthenticated file upload vulnerability with a CVSS score of 10.0.
- Attackers can upload malicious files and gain remote access, employing techniques like web shell backdoors and code injection.
- SAP recommends applying the emergency patch and restricting access to vulnerable endpoints to mitigate the exploit.