News

SAP warns of high-severity vulnerabilities in multiple products

As hackers exploit a high-severity vulnerability in SAP’s flagship Enterprise Resource Planning software product, the ...
American Hospital Association4d

H-ISAC TLP White Threat Bulletin: Critical SAP S/4HANA Vulnerability Actively Exploited (CVE-2025-42957) Sept. 9, 2025

Exploitation of the SAP S/4HANA flaw, tracked as CVE-2025-42957, has been disclosed. The vulnerability allows code injection and privilege escalation, potentially giving a low-privileged user full ...
Computer Weekly7y

SAP indirect access: Prepare for the impact on third-party applications

Transforming a business digitally often relies on building a digital customer experience on top of a core business system. The core system – a system of record, such as an enterprise resource planning ...
PC World8y

Using Salesforce to access SAP? Pour yourself a stiff drink

The week after a U.K. court favored SAP in a US$70 million licensing dispute, the software developer took another brewery to arbitration in the U.S., this time seeking damages of over $600 million.
CSO Online10d

Alert: Exploit available to threat actors for SAP S/4HANA critical vulnerability

“While widespread exploitation has not yet been reported,” Germany-based SecurityBridge said in a blog on Thursday, it has ...
Diginomica8y

SAP UK v Diageo - an important ruling for customers with indirect access issues

SAP has just won in its SAP UK v Diageo test case determining the right of software vendors to charge license fees to users on indirect access to SAP generated data. Late last week, a UK court ruled ...
Infosecurity-magazine.com4y

Exploit Allows Root Access to SAP

A team of enterprise resource planning security experts in Massachusetts have identified a functional exploit affecting SAP that is publicly available. The exploit was discovered by Onapsis Research ...