SAP NetWeaver存在关键漏洞CVE-2025-31324,攻击者利用该漏洞上传JSP网页壳,可能导致未经授权的文件上传和代码执行。受影响系统包括政府机构和企业。建议及时更新系统、限制访问特定URL,并检查妥协迹象。 2025-4-29 15:54:15 Author: horizon3.ai(查看原文) 阅读量:13 收藏
SAP NetWeaver Visual Composer Metadata Uploader
A critical vulnerability, CVE-2025-31324, has been identified in SAP NetWeaver. Threat actors are actively exploiting this flaw to upload JSP web shells via the “/developmentserver/metadatauploader” endpoint, potentially leading to unauthorized file uploads and code execution.
Affected systems include those running SAP NetWeaver, particularly government agencies and enterprises. Because SAP solutions are often deployed on-premises, the onus is on the users to apply security measures. Failure to promptly update and patch systems significantly increases the risk of compromise.
Mitigations
- Follow the vendor’s guidance for updating to the latest version.
- Restrict access to /uddi/ URLs to internal network traffic, especially if upgrading isn’t feasible.
- Post-mitigation check for indicators of compromise.
Rapid Response N-Day Testing
Read about other CVEs
NodeZero® Platform
Implement a continuous find, fix, and verify loop with NodeZero
The NodeZero® platform empowers your organization to reduce your security risks by autonomously finding exploitable weaknesses in your network, giving you detailed guidance around how to priortize and fix them, and having you immediately verify that your fixes are effective.
Recognized By
如有侵权请联系:admin#unsafe.sh