SAP’s Security Snafu: Critical Vulnerabilities Plague July 2025 Patch Day

SAP’s July 2025 Security Patch Day drops with a bang, featuring 27 new notes and four updates. At the forefront is a critical Supplier Relationship Management update, with a bug now rated 10/10 on the CVSS scale. SAP urges users to update swiftly, lest their systems fall prey to these security gremlins.

3P
Published: July 8, 2025 12:54 pmAdded: July 8, 2025 at 6:06 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like SAP is channeling its inner mechanic with this patch day, fixing more leaks than a plumber on overtime! But hey, with vulnerabilities scoring a solid 10/10, it’s not just a patch day, it’s a patch-a-palooza! Time to update your systems faster than you can say “unauthenticated attackers”—because hackers won’t wait for you to finish your coffee break!

Key Points:

  • SAP released 27 new and four updated security notes for July 2025 Security Patch Day.
  • A critical vulnerability in Supplier Relationship Management (SRM) was updated to a CVSS score of 10/10.
  • Remote code execution vulnerability identified in S/4HANA and SCM with a CVSS score of 9.9.
  • Four critical insecure deserialization flaws fixed in NetWeaver components.
  • High-severity issues patched in NetWeaver, Business Objects, and Business Warehouse.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?