Global News

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

October 16, 2025

Written by:

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

SAP has rolled out security fixes for 13 new security issues, including additional hardening for a maximum-severity bug in SAP NetWeaver AS Java that could result in arbitrary command execution.
The vulnerability, tracked as CVE-2025-42944, carries a CVSS score of 10.0. It has been described as a case of insecure deserialization.
“Due to a deserialization vulnerability in SAP NetWeaver, an

Source: https://thehackernews.com/2025/10/new-sap-netweaver-bug-lets-attackers.html

#vulnerabilitysap #sapnetweaver #bugsap #netweaverbug #deserializationvulnerability

Global News

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

Share this:

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal