CVE-2025-42957 - Geek Feed

Security
Tech News

Critical SAP S/4HANA vulnerability now exploited in attacks

September 8, 2025September 8, 2025 geekfeed0Tagged Actively Exploited, Code Injection, CVE-2025-42957, SAP, vulnerability

A critical SAP S/4HANA code injection vulnerability is being leveraged in attacks in the wild to breach exposed servers, researchers warn. The flaw, tracked as CVE-2025-42957, is an ABAP code injection problem in an RFC-exposed function module of SAP S/4HANA, allowing low-privileged authentication users to inject arbitrary code, bypass authorization, and fully take over SAP. The […]

2 mins read