Community Coffee Corner Discussions
Get to know other SAP Community members during your coffee break. Join discussions on a variety of topics in a casual environment.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Vulnerabilities and Compromises

JimSpath
SAP Champion
SAP Champion

2 weeks ago - last edited 2 weeks ago

787

Over this past weekend I saw 2 social media posts on a "zero-day" vulnerability. As usual with bad news, it dropped when many people may not be on the office network. I am curious who has seen this news, how they found it, and whether they escalated/responded. Don't post with "we're on X version" or whatever, just if you knew/know.

"SAP has released an out-of-band emergency update to fix a critical zero-day vulnerability (CVE-2025-31324) in NetWeaver Visual Composer — and it’s already being exploited in the wild." [source: https://infosec.exchange/@Efani/114405113950458290 ]

See: SAP Security Note 3594142

On Mastodons We Ride
3 REPLIES 3

TammyPowlas
SAP Mentor
SAP Mentor

2 weeks ago

639

We received several emails from SAP about this note.  

And it is all over Linked In.

abo
Active Contributor

2 weeks ago

633

as @TammyPowlas noted, it is just about everywhere... I even got messages from non-SAP friends quoting other sources! 😄

smarchesini
SAP Champion
SAP Champion

2 weeks ago

0 Kudos
422

And I just learn from you! 😅
Maybe because I'm not in the basis team