SAP has issued an emergency patch for a critical vulnerability in its NetWeaver platform, identified as CVE-2025-31324. This flaw pertains to the metadata uploader component in the Visual Composer, allowing unauthorized upload of executable binaries by unauthenticated users. Security experts note that this vulnerability may have already been exploited, raising concerns over possible ransomware attacks and unauthorized network access. Customers are urged to apply the patch and evaluate their systems for any compromises, as well as to consider the similar issues reported by other security firms.
From the limited description entered into the National Vulnerability Database, we understand it's a flaw with the metadata uploader component in NetWeaver's no-code Visual Composer app-building tool.
We strongly recommend SAP customers to apply the emergency patch released by SAP earlier today, and assess vulnerable systems for compromise.
Collection
[
|
...
]