The attackers have been exploiting Zero-Day risk in part of the SAP NEWAAVER’s Application Server from the beginning of this week. The SAP issued Out-of-Band Fix available by its support site and should be used immediately, especially in the programs that are displayed directly on the Internet.
“Authorized attackers can abuse built-in-hand-in-size operations to SAPs and Nsever, which means a remote code system,” Benjamin Harris, Cybercourecurity The Watchtower, told CSOver. “This is not a threat to the Tiori – it is right now. Watchtowr identifies practical exploits by threatening players, the risk of quitting Web Shell Backdosen in exposed programs and find out more.”
The risks, followed as a CVE 2025-31324, found the top 10 high points in CVSS scales. Customers should use correction in SAP Security Note 3594142 (Requirements), but if it should immediately disable or protect the risk of the SAP-OPPSIS focused on Anabsis.
Source link