SAP: Critical vulnerability in SAP NetWeaver under threat of active exploitation

Security researchers warn that hackers are actively exploiting a critical unrestricted-file-upload vulnerability in SAP NetWeaver Visual Composer. The vulnerability, tracked as CVE-2025-31324, could allow an unauthenticated user to upload malicious executable binaries. The vulnerability has a severity score of 10. Researchers from Reliaquest disclosed the vulnerability to SAP after an investigation uncovered attackers uploading JSP [&hellip The post Critical vulnerability in SAP NetWeaver under threat of active exploitation appeared first on TechCentral.ie.