heise online

SAP Patchday: Critical vulnerabilities allow malicious code to be injected

In August, SAP issues 15 new security notes on vulnerabilities in its products. Some of them pose a critical risk. SAP's August Patchday brings 15 new security notes that address, among other things, ...
Bleeping Computer

Critical SAP S/4HANA vulnerability now exploited in attacks

A critical SAP S/4HANA code injection vulnerability is being leveraged in attacks in the wild to breach exposed servers, researchers warn. The flaw, tracked as CVE-2025-42957, is an ABAP code ...

SAP users patch now - worrying S/4HANA vulnerability being exploited in the wild

SAP patches critical S/4HANA flaw which allowed full system takeover Attackers can inject ABAP code and bypass authorization using RFC Some systems remain unpatched, and confirmed abuse has already ...