SiliconANGLE

Researchers uncover weak encryption in SAP user interface for Windows and Java

SAP SE today addressed two newly disclosed vulnerabilities in its SAP Graphical User Interface client applications following their discovery in coordinated research by Pathlock Inc. and Fortinet Inc.
adtmag.com

SAP Builds Its Own Java Distro

Another software vendor has unveiled its own distribution of OpenJDK. SAP's new SapMachine was created to allow its customers and partners to build and maintain an SAP-supported version of OpenJDK.
CSOonline

SAP GUI flaws expose sensitive data via weak or no encryption

Newly disclosed vulnerabilities in SAP GUI for Windows and Java store user data with outdated or no encryption, posing compliance and breach risks for enterprises. SAP GUI, a trusted interface for ...
Infosecurity-magazine.com

Public Exploit Released for Critical SAP NetWeaver Flaw

A critical vulnerability in SAP NetWeaver AS Java Visual Composer, tracked as CVE-2025-31324, is now being widely exploited following the release of public exploit tooling. The flaw, patched in April ...
Dark Reading

XOR Marks the Flaw in SAP GUI

SAP has patched a couple of vulnerabilities in its graphical user interface (SAP GUI) input history feature that give attackers a way to potentially access sensitive data stored locally on user ...
Infosecurity-magazine.com

SAP GUI Input History Found Vulnerable to Weak Encryption

Two vulnerabilities in SAP’s Graphical User Interface (SAP GUI) input history feature have been disclosed, revealing weaknesses in how sensitive user data is stored locally. The issues, discovered by ...
Dark Reading

SAP NetWeaver Visual Composer Flaw Under Active Exploitation

Attackers are actively exploiting a recently patched zero-day vulnerability in SAP's NetWeaver Visual Composer Web-based software modeling tool. CVE-2025-31324 is a critical vulnerability with a ...