The first round of SAP patches for 2026 resolves 19 vulnerabilities, including critical SQL injection, RCE, and code ...

SAP held its monthly patch day on Tuesday and released 18 new security advisories. Two of these address security flaws that the Walldorf-based developers classify as critical security risks; one even ...

SAP patches critical S/4HANA flaw which allowed full system takeover Attackers can inject ABAP code and bypass authorization using RFC Some systems remain unpatched, and confirmed abuse has already ...

A critical SAP S/4HANA code injection vulnerability is being leveraged in attacks in the wild to breach exposed servers, researchers warn. The flaw, tracked as CVE-2025-42957, is an ABAP code ...

A critical code injection vulnerability in SAP's S/4HANA ERP software that was first disclosed last month is now under exploitation in the wild. SAP previously disclosed and patched CVE-2025-42957, ...

A critical security vulnerability impacting SAP S/4HANA, an Enterprise Resource Planning (ERP) software, has come under active exploitation in the wild. The command injection vulnerability, tracked as ...

It’s National Payroll Week in the U.S. and the UK, and while payroll might not be considered the flashiest part of your HCM strategy, it’s one of the most powerful drivers of trust, transparency, and ...

As SAP’s Business Data Cloud (BDC) rolls out internationally, customers can start taking advantage of SAP’s new strategy for supporting business innovation through data integration, according to the ...

SecurityBridge, the Cybersecurity Command Center for SAP, is releasing its SecurityBridge Code Vulnerability Analyzer (CVA) powered by AI, a significant enhancement to its holistic SAP security ...

SAP released 20 security notes on April 2025 patch day, including three addressing critical code injection and authentication bypass flaws. SAP on Tuesday announced the release of 18 new and two ...