A critical zero-day vulnerability in SAP NetWeaver, CVE-2025-31324, is being exploited to deliver “Auto-Color,” a stealthy Linux backdoor. The vulnerability allows for unauthenticated remote code execution (RCE), enabling attackers to achieve full system compromise. Multiple threat actors, including state-sponsored groups and ransomware operators, have weaponized this flaw to deploy malware, establish persistent access, and steal […]
The post Auto-Color Backdoor Weaponizes SAP Flaw for Stealthy Access appeared first on SecPod Blog.