SAP NetWeaver RMI-P4 Deserialization Vulnerability

SAP NetWeaver is a Java-based enterprise software used for developing and integrating various business applications. The RMI-P4 module allows remote method invocation, but due to a deserialization vulnerability, an attacker can exploit the system by submitting malicious payload to an open port, leading to arbitrary OS command execution.

You're affected if you use Due to a deserialization vulnerability. Specific version info not stated in the advisory.

1. Upgrade to SAP NetWeaver 7.5 SP3 or later.
2. Immediate mitigations:
3. Restrict network access to your SAP NetWeaver instance (firewall it from the public internet)
4. Audit admin account activity for suspicious access patterns
5. Monitor for unauthorized token creation

• me.sap.com
• me.sap.com
• me.sap.com
• url.sap