Summary: A critical zero-day vulnerability, CVE-2025-31324, affects over 10,000 SAP applications, allowing unauthenticated attackers to upload malicious files for code execution. Discovered by ReliaQuest, the flaw represents a significant threat to SAP NetWeaver systems, enabling full control over critical business processes. The vulnerability has already been exploited in live attacks, raising concerns about potential espionage and fraud.
Affected: SAP NetWeaver applications
Keypoints :
- Vulnerability CVE-2025-31324 has a CVSS score of 10/10 and allows unauthorized file uploads.
- Exploiting the vulnerability can lead to complete control over SAP systems, making them susceptible to espionage and fraud.
- ReliaQuest found evidence of ongoing attacks using this vulnerability, despite systems being fully updated with the latest patches.
Source: https://www.securityweek.com/sap-zero-day-possibly-exploited-by-initial-access-broker/