A member of the Executive Board of SAP AG, Shai Agassi is the person most responsible for SAP's NetWeaver platform. It was Agassi who first introduced the idea of an application and integration ...

The unrestricted file upload flaw is likely being exploited by an initial access broker to deploy JSP web shells that grant full access to servers and allow installing additional malware payloads.

SAP's security updates for this month address multiple critical vulnerabilities. The most serious of them, rated with the highest severity score, affects the company's Business Client product. Two ...

SAP has fixed two critical vulnerabilities affecting NetWeaver web application server that could be exploited to escalate privileges and access restricted information. As part of the January Security ...

SAP publishes a total of 16 new security alerts in May 2025. Some of them deal with critical security vulnerabilities in various products from the company's business software catalog.

Ransomware groups and Chinese advanced persistent threat (APT) groups are targeting a critical vulnerability in SAP NetWeaver weeks after it was disclosed and patched by the vendor through an ...

A critical vulnerability in SAP NetWeaver AS Java Visual Composer, tracked as CVE-2025-31324, is now being widely exploited following the release of public exploit tooling. The flaw, patched in April ...

Oracle announced that the Oracle Database In-Memory has been certified by SAP for use with SAP solutions based on the SAP NetWeaver 7.x technology platform. This move continues the longstanding ...

SAP has issued fixes for 21 newly reported security flaws across its enterprise software, including four critical vulnerabilities in NetWeaver, which underpins many of the company’s flagship ...

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. A critical vulnerability in SAP NetWeaver ...