In this The Hacker News article by Ravie Lakshmanan, Jonathan Stross — SAP Security Analyst at Pathlock — shares his expert commentary on how the newly disclosed SAP NetWeaver deserialization vulnerability (CVE-2025-42944) remains a major threat, noting that “the P4/RMI chain continues to drive critical exposure in AS Java” until mitigations are properly applied.
OCTOBER 18, 2025
New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login
1 min read
