Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

SAP security patch release for CVE-2025-42944

Security Patch Release
First reported
Last updated
Happening score
H score 30
2 unique sources, 2 articles

Summary

Hide ▲

SAP released 21 new and four updated security notes covering NetWeaver and other products, including several critical-severity vulnerabilities that could enable remote code execution, data exposure, and system takeover. The patch release bundles fixes for CVE-2025-42944, CVE-2025-42922, and CVE-2025-42958, plus other high-, medium-, and low-severity issues. SAP says it has no indication of in-the-wild exploitation, but it urges customers to apply the patches as soon as possible.

Related Happenings

Oracle security patch release for CVE-2026-21992

Security Patch Release
First: 21.03.2026 12:24 Last: 21.03.2026 12:24 Sources 1

About this happening: **Oracle** released **security updates** for **CVE-2026-21992**, a critical flaw in **Identity Manager** and **Web Services Manager** that could enable **unauthenticated remote co...

Open Happening

SAP security patch release for CVE-2019-17571

Security Patch Release
First: 11.03.2026 14:26 Last: 11.03.2026 14:26 Sources 1

About this happening: **SAP** released security updates for **two critical flaws** in **FS-QUO** and **NetWeaver Enterprise Portal Administration**, reducing the risk of **arbitrary code execution** on...

Open Happening

Patch Tuesday multi-vendor security patch release (multiple vulnerabilities)

Security Patch Release
First: 11.02.2026 15:28 Last: 11.02.2026 15:28 Sources 1

About this happening: On **Patch Tuesday**, **software vendors** released security updates across **OS, cloud, network, and application platforms**, closing multiple flaws in widely used products and s...

Open Happening

Trend Micro security patch release for CVE-2025-69258

Security Patch Release
First: 09.01.2026 12:01 Last: 09.01.2026 12:01 Sources 1

About this happening: **Trend Micro** released **security updates** for **Apex Central for Windows** to fix **CVE-2025-69258**, a **9.8 CVSS** remote-code-execution flaw that could let an unauthenticat...

Open Happening

Atlassian security patch release for CVE-2025-66516

Security Patch Release
First: 15.12.2025 13:00 Last: 15.12.2025 13:00 Sources 1

About this happening: **Atlassian** released **December 2025 patches** for **roughly 30 third-party vulnerabilities**, reducing exposure across **Bamboo, Bitbucket, Confluence, Crowd, Fisheye/Crucible,...

Open Happening

Timeline

  1. 09.09.2025 16:52 2 articles · 8mo ago

    SAP patches critical NetWeaver vulnerabilities

    Mitigation Patch Update

    SAP released 21 new and four updated security notes for NetWeaver and other products, including critical CVE-2025-42944 in the RMI-P4 module of AS Java, CVE-2025-42922 in NetWeaver AS Java's Deploy Web Service, and CVE-2025-42958 on NetWeaver running on IBM i-series. The package also updates a March 2023 security note for a critical directory traversal defect in NetWeaver AS ABAP and adds fixes for Business One, Landscape Transformation Replication Server, S/4HANA, and ABAP Platform, with SAP stating there is no indication of in-the-wild exploitation and urging customers to apply the patches as soon as possible.

    Show sources
    Open in new tab