June 26, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
APT34 Abuses Port 8080 for Fake 404 Pages and Reuse SSH Keys – Active IOCs
April 24, 2025
Quasar RAT aka CinaRAT – Active IOCs
April 25, 2025
APT34 Abuses Port 8080 for Fake 404 Pages and Reuse SSH Keys – Active IOCs
April 24, 2025
Quasar RAT aka CinaRAT – Active IOCs
April 25, 2025
Severity
High
Analysis Summary
CVE-2025-31324
SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.
Impact
- Gain Access
Indicators of Compromise
CVE
- CVE-2025-31324
Affected Vendors
SAP
Affected Products
- SAP NetWeaver Visual Composer Metadata Uploader
Remediation
Refer to SAP Website for patch, upgrade, or suggested workaround information. (Login Required)