Cybersecurity Experts Warn of Second Wave of Attacks Targeting SAP NetWeaver Zero-Day Vulnerability

Cybersecurity experts are warning of a second wave of attacks targeting a zero-day vulnerability in SAP NetWeaver, identified as CVE-2025-31324 with a CVSS score of 10/10. In April, researchers from ReliaQuest reported that this flaw, present in SAP NetWeaver Visual Composer Metadata Uploader, was potentially being exploited. Thousands of applications exposed on the Internet are potentially at risk. Attackers are using webshells to exploit this vulnerability.