VDB
CVE-2025-30015
CVE-2025-30015
PUBLISHED
CVSS 8.699999809265137 HIGH
SAP stellt unternehmensweite Lösungen für Geschäftsprozesse wie Buchführung, Vertrieb, Einkauf und Lagerhaltung zur Verfügung.
EPSS 0.12% · 29.8th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.12%
29.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP | SAP Software |
Exploit Intelligence
- https://securityonline.info/cve-2025-31324-cvss-10-zero-day-in-sap-netweaver-exploited-in-the-wild-to-deploy-webshells-and-c2-frameworks/ (certbund)
- https://onapsis.com/blog/active-exploitation-of-sap-vulnerability-cve-2025-31324/ (ncsc-nl)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
- expl_sap_netweaver_apr25.yar (github-yara)
…and 8 more exploits
Timeline
- Apr 7, 2025 CVE Published
- Apr 8, 2025 EPSS Score
- Apr 21, 2025 EPSS Score
- Apr 30, 2025 CVE Updated
- May 3, 2025 EPSS Score
- May 16, 2025 EPSS Score
- May 29, 2025 EPSS Score
- Jun 10, 2025 EPSS Score
- Jun 23, 2025 EPSS Score
- Jul 6, 2025 EPSS Score
- Jul 18, 2025 EPSS Score
- Jul 31, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0719.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0719 advisory
- https://support.sap.com/en/my-support/knowledge-base/security-notes-news/april-2025.html advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-31324 advisory
- https://securityonline.info/cve-2025-31324-cvss-10-zero-day-in-sap-netweaver-exploited-in-the-wild-to-deploy-webshells-and-c2-frameworks/ exploit