—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Current Activities

Threat Actors exploiting Code Injection vulnerability in SAP S/4HANA (Private Cloud or On-Premise) 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

It has been reported that the threat actors are exploiting Code Injection Vulnerability (CVE-2025-42957) in SAP S/4HANA (Private Cloud or On-Premise).

Software Affected

SAP S/4HANA (Private Cloud or On-Premise) Version – S4CORE 102, 103, 104, 105, 106, 107, 108

Description

This vulnerability exists due to a command injection flaw in a remote function call (RFC) interface function module of SAP S/4HANA. An attacker with user-level privileges could exploit this flaw to inject arbitrary system commands and bypass authorisation checks, which may result in a complete compromise of the affected system.

Note: This vulnerability (CVE-2025-42957) is being exploited in the wild. Users are advised to apply patches urgently.

Solution

Apply appropriate updates as mentioned by the vendor.

https://support.sap.com/en/my-support/knowledge-base/security-notes-news/august-2025.html

Vendor Information

SAP

https://support.sap.com/en/my-support/knowledge-base/security-notes-news/august-2025.html

References

SAP

https://support.sap.com/en/my-support/knowledge-base/security-notes-news/august-2025.html

CERT-In

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES02&VLCODE=CIAD-2025-0027

CVE Name

CVE-2025-42957

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmjC3QgACgkQ3jCgcSdc

ys/8ZQ/9Fj4CFDhe15YMKQ+cemBNfvPsBxw1fP7noAn7I6ovdCz9hdL6tzKqrWUG

SzxHjVsXTkeWYIED2848ciMxfB0/Pz32VBFUIjUE0vMOoZ4+nxNwwXrvP05us1jh

DXIwVZX7+o3WPVyJ6whHnWXzO95VvBgohU5uuOBrBHSuRvJulU2Juzzywwc92Psc

clBG60d4gzwQKevmyeQxP+Sz2KZpPkOmR1vucgZkBA3YYJybSVa9QI/jB3zuqPUO

+AEelNrdY1vzYiEiPlaQotW26vSup5alkqqy/Argy0eoFdKmWv5Vt1JJmn920DEb

HAPBdcKdYxdo2XU4PQuZrU1hP6Za19q3Fd7bSU21QgsRJ6gRNLg0mdpDoxIC7ryZ

abS7sCrPSTPnVyaK2QG0uKnJB/r2ZBqxW0uGzO8hJeTQoY/L5l8z5YG8/lZZ0WGG

/FoPS8ojMZO4Hm4AoLYtLc0nnhdjQcZukPx0P5xKPKYNz39Bpr3eq/wQnE59H912

clxS6gCboQA/Uu7rl0TQeDfmVatI4kR/DMenrirPnOlHGDOvrW03GX7pnTDgu+5n

iVzB4THCIG1oDfh5AriZ1QzJkEeRGTmkswb0VhFQfaCIObZRpokgvRiTdCu29+cA

j0VdqBSTAehv5ONiBHRK0DNkolzGosGJNcWPsw/f6eO+k40VG54=

=T/ba

—–END PGP SIGNATURE—–