Pathlock’s SAP Security Analyst Jonathan Stross shares his expert commentary on the severe risk posed by the newly disclosed SAP S/4HANA code-injection vulnerability (CVE-2025-42957) — noting that after the patch was released, Pathlock “detected outlier activity consistent with exploitation attempts,” underscoring how quickly attackers are weaponizing this flaw and why unpatched SAP systems remain dangerously exposed.
SEPTEMBER 6, 2025
Critical SAP S/4HANA Vulnerability Under Attack, Patch Now
1 min read
