TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution

By rooter

A new exploit combining two critical, now-patched security flaws in SAP NetWeaver has emerged in the wild, putting organizations at risk of system compromise and data theft.
The exploit in question chains together CVE-2025-31324 and CVE-2025-42999 to bypass authentication and achieve remote code execution, SAP security company Onapsis said.

CVE-2025-31324 (CVSS score: 10.0) – Missing

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims

rooter
Cyber Security

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

rooter
Cyber Security

How NIST’s Cutback of CVE Handling Impacts Cyber Teams

rooter

Leave a Reply

You Missed

News

Palantir Posts Very Long X Post Denouncing ‘Vacant and Hollow Pluralism’

News

Blue Origin successfully reused its New Glenn rocket

News

Hollywood Has Decided ‘The Phantom’ Will Return to TV

News

Blue Origin’s rocket reuse achievement marred by upper stage failure