Techly NewsGet the app

Get the latest tech news

SAP warns of high-severity vulnerabilities in multiple products


Users of SAP’s S/4HANA and NetWeaver products are at risk and should patch soon.

That vulnerability, tracked as CVE-2025-42957 and carrying a severity rating of 9.9, resides in the SAP S/4HANA an ERP (Enterprise Resource Planning) software suite developed for managing large organizations’ complex business processes, including those for finance, accounting, and HR. In summary, a malicious insider or a threat actor who has gained basic user access (through phishing, for example) could leverage this flaw to escalate into full control of the SAP environment. Dan Goodin is Senior Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, hardware hacking, encryption, and passwords.

Get the Android app

Or read this on ArsTechnica

Read more on:

Photo of SAP

SAP

Photo of multiple products

multiple products

Related news:

News photo

SAP fixes maximum severity NetWeaver command execution flaw

News photo

Critical, make-me-super-user SAP S/4HANA bug under active exploitation

News photo

SAP splashes €20B on Euro sovereign cloud push

« Microsoft reportedly plans to start using Anthropic models to power some of Office 365's Copilot features
The iPhone Air's top wireless charging speed is 20W »