National Cyber Warfare Foundation (NCWF)

Qilin Exploits SAP Zero-Day Vulnerability Weeks Ahead of Public Disclosure


0 user ratings
2025-05-20 11:59:44
milo
Red Team (CNA)

Cybersecurity experts at OP Innovate have uncovered evidence that CVE-2025-31324, a critical zero-day vulnerability in SAP NetWeaver Visual Composer, was actively exploited nearly three weeks before its public disclosure. This flaw, residing in the /developmentserver/metadatauploader endpoint, lacks proper authentication and authorization controls, enabling unauthenticated attackers to upload malicious files like web shells, leading to potential […]


The post Qilin Exploits SAP Zero-Day Vulnerability Weeks Ahead of Public Disclosure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/qilin-exploits-sap-zero-day-vulnerability/


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Red Team (CNA)



Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.