American Hospital Association

H-ISAC TLP White Threat Bulletin: Critical SAP S/4HANA Vulnerability Actively Exploited (CVE-2025-42957) Sept. 9, 2025

Exploitation of the SAP S/4HANA flaw, tracked as CVE-2025-42957, has been disclosed. The vulnerability allows code injection and privilege escalation, potentially giving a low-privileged user full ...
CSOonline

SAP patches critical bugs allowing full system compromise

SAP has sealed a bunch of severe bugs affecting its systems, including two critical vulnerabilities that can allow full system compromise. On its Security Patch Day for August 2024, the software giant ...
ZDNet

Woolworths upgrades HR system to the cloud with SAP

For the last 20 years, Australian retail giant Woolworths has been running on the same payroll system, which meant a lot of processes were manual and form based, and the system itself had reached end ...

SAP fixes maximum severity NetWeaver command execution flaw

SAP has addressed 21 new vulnerabilities affecting its products, including three critical severity issues impacting the ...
Computerworld

How the Post Office finally moved off a 19-year-old SAP HR system

The Post Office has recently completed a migration from a 19-year-old SAP HR 4.7 system to SuccessFactors, saving the company money, giving employees the ability to self serve and decommissioning a ...
Computer Weekly

Amey uses SAP HR system to manage 11,000 people

SAP HR is being used to power a human resources (HR) shared service at construction firm Amey. Developed by SAP specialist Epi-use, the system is a standard on-premise application. “We were already an ...