{"id":10531,"date":"2025-10-15T13:27:29","date_gmt":"2025-10-15T06:27:29","guid":{"rendered":"https:\/\/infosec.new88088.net\/?p=10531"},"modified":"2026-02-05T13:27:37","modified_gmt":"2026-02-05T06:27:37","slug":"sap-va-lo-hong-10-diem-trong-netweaver-ngan-nguy-co-chiem-quyen-he-thong-tu-xa","status":"publish","type":"post","link":"https:\/\/infosec.new88088.net\/2025\/10\/15\/sap-va-lo-hong-10-diem-trong-netweaver-ngan-nguy-co-chiem-quyen-he-thong-tu-xa\/","title":{"rendered":"SAP v\u00e1 l\u1ed7 h\u1ed5ng 10 \u0111i\u1ec3m trong NetWeaver, ng\u0103n nguy c\u01a1 chi\u1ebfm quy\u1ec1n h\u1ec7 th\u1ed1ng t\u1eeb xa"},"content":{"rendered":"

SAP v\u1eeba c\u00f4ng b\u1ed1 b\u1ea3n v\u00e1 b\u1ea3o m\u1eadt th\u00e1ng 10\/2025, kh\u1eafc ph\u1ee5c t\u1ed5ng c\u1ed9ng 13 l\u1ed7 h\u1ed5ng m\u1edbi v\u00e0 3 b\u1ea3n c\u1eadp nh\u1eadt trong nhi\u1ec1u s\u1ea3n ph\u1ea9m doanh nghi\u1ec7p c\u1ee7a h\u00e3ng. T\u00e2m \u0111i\u1ec3m c\u1ee7a \u0111\u1ee3t v\u00e1 n\u00e0y l\u00e0 l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng CVE-2025-42944 trong n\u1ec1n t\u1ea3ng SAP NetWeaver AS Java, \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 \u0111i\u1ec3m tuy\u1ec7t \u0111\u1ed1i 10,0, cho ph\u00e9p th\u1ef1c thi m\u00e3 t\u1eeb xa m\u00e0 kh\u00f4ng c\u1ea7n x\u00e1c th\u1ef1c. \u0110\u00e2y \u0111\u01b0\u1ee3c xem l\u00e0 m\u1ed9t trong nh\u1eefng l\u1ed7i nguy hi\u1ec3m nh\u1ea5t t\u1eebng \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n trong h\u1ec7 sinh th\u00e1i SAP n\u0103m nay.<\/b><\/p>\n

\n
\"SAP<\/div>\n<\/div>\n

Theo m\u00f4 t\u1ea3 k\u1ef9 thu\u1eadt, CVE-2025-42944 xu\u1ea5t ph\u00e1t t\u1eeb c\u01a1 ch\u1ebf x\u1eed l\u00fd d\u1eef li\u1ec7u kh\u00f4ng an to\u00e0n trong m\u00f4-\u0111un RMI-P4 c\u1ee7a NetWeaver AS Java phi\u00ean b\u1ea3n SERVERCORE 7.50. Th\u00e0nh ph\u1ea7n n\u00e0y c\u00f3 nhi\u1ec7m v\u1ee5 x\u1eed l\u00fd c\u00e1c \u0111\u1ed1i t\u01b0\u1ee3ng Java \u0111\u01b0\u1ee3c truy\u1ec1n qua m\u1ea1ng, nh\u01b0ng l\u1ea1i kh\u00f4ng ki\u1ec3m so\u00e1t \u0111\u00fang c\u00e1ch d\u1eef li\u1ec7u \u0111\u1ea7u v\u00e0o. K\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 g\u1eedi m\u1ed9t g\u00f3i tin ch\u1ee9a \u0111\u1ed1i t\u01b0\u1ee3ng \u0111\u1ed9c h\u1ea1i \u0111\u1ebfn c\u1ed5ng RMI \u0111ang m\u1edf, bu\u1ed9c m\u00e1y ch\u1ee7 gi\u1ea3i tu\u1ea7n t\u1ef1 v\u00e0 th\u1ef1c thi m\u00e3 t\u00f9y \u00fd tr\u00ean h\u1ec7 \u0111i\u1ec1u h\u00e0nh. SAP c\u1ea3nh b\u00e1o r\u1eb1ng vi\u1ec7c khai th\u00e1c th\u00e0nh c\u00f4ng c\u00f3 th\u1ec3 d\u1eabn t\u1edbi chi\u1ebfm quy\u1ec1n \u0111i\u1ec1u khi\u1ec3n ho\u00e0n to\u00e0n h\u1ec7 th\u1ed1ng, \u1ea3nh h\u01b0\u1edfng nghi\u00eam tr\u1ecdng \u0111\u1ebfn t\u00ednh b\u1ea3o m\u1eadt, to\u00e0n v\u1eb9n v\u00e0 kh\u1ea3 n\u0103ng ho\u1ea1t \u0111\u1ed9ng c\u1ee7a \u1ee9ng d\u1ee5ng.<\/p>\n

\u0110i\u1ec3m \u0111\u1eb7c bi\u1ec7t nguy hi\u1ec3m c\u1ee7a l\u1ed7 h\u1ed5ng n\u00e0y l\u00e0 kh\u00f4ng y\u00eau c\u1ea7u \u0111\u0103ng nh\u1eadp hay t\u01b0\u01a1ng t\u00e1c t\u1eeb ng\u01b0\u1eddi d\u00f9ng, khi\u1ebfn n\u00f3 c\u00f3 kh\u1ea3 n\u0103ng t\u1ef1 l\u00e2y lan gi\u1eefa c\u00e1c h\u1ec7 th\u1ed1ng. C\u00e1c chuy\u00ean gia \u0111\u00e1nh gi\u00e1 r\u1eb1ng ch\u1ec9 c\u1ea7n m\u1ed9t m\u00e1y ch\u1ee7 NetWeaver AS Java ch\u01b0a \u0111\u01b0\u1ee3c v\u00e1 l\u1ed9 ra Internet, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 d\u1ec5 d\u00e0ng x\u00e2m nh\u1eadp v\u00e0 c\u00e0i \u0111\u1eb7t m\u00e3 \u0111\u1ed9c t\u1eeb xa. SAP khuy\u1ebfn ngh\u1ecb c\u00e1c t\u1ed5 ch\u1ee9c tri\u1ec3n khai b\u1ea3n v\u00e1 ngay l\u1eadp t\u1ee9c; trong tr\u01b0\u1eddng h\u1ee3p ch\u01b0a th\u1ec3, c\u1ea7n kh\u1ea9n c\u1ea5p gi\u1edbi h\u1ea1n quy\u1ec1n truy c\u1eadp \u0111\u1ebfn c\u00e1c c\u1ed5ng RMI-P4 nh\u01b0 bi\u1ec7n ph\u00e1p t\u1ea1m th\u1eddi.<\/p>\n

C\u00f9ng \u0111\u1ee3t v\u00e1, SAP c\u0169ng x\u1eed l\u00fd l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng kh\u00e1c mang m\u00e3 CVE-2025-42937 trong d\u1ecbch v\u1ee5 in SAPSprint, \u0111\u01b0\u1ee3c ch\u1ea5m \u0111i\u1ec3m 9,8. L\u1ed7i n\u00e0y li\u00ean quan \u0111\u1ebfn l\u1ed7 h\u1ed5ng v\u01b0\u1ee3t quy\u1ec1n truy c\u1eadp th\u01b0 m\u1ee5c, cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng ch\u01b0a x\u00e1c th\u1ef1c ghi \u0111\u00e8 c\u00e1c t\u1ec7p h\u1ec7 th\u1ed1ng b\u1eb1ng c\u00e1ch g\u1eedi \u0111\u01b0\u1eddng d\u1eabn \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf \u0111\u1ec3 tho\u00e1t kh\u1ecfi th\u01b0 m\u1ee5c gi\u1edbi h\u1ea1n. M\u1ed9t khi b\u1ecb khai th\u00e1c, l\u1ed7 h\u1ed5ng c\u00f3 th\u1ec3 g\u00e2y h\u01b0 h\u1ea1i nghi\u00eam tr\u1ecdng \u0111\u1ebfn to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng in v\u00e0 d\u1ecbch v\u1ee5 n\u1ec1n t\u1ea3ng, \u0111e d\u1ecda tr\u1ef1c ti\u1ebfp \u0111\u1ebfn an to\u00e0n v\u00e0 \u1ed5n \u0111\u1ecbnh c\u1ee7a m\u00e1y ch\u1ee7.<\/p>\n

B\u1ea3n v\u00e1 th\u00e1ng 10 c\u00f2n kh\u1eafc ph\u1ee5c th\u00eam CVE-2025-42910, l\u1ed7i t\u1ea3i t\u1ec7p kh\u00f4ng gi\u1edbi h\u1ea1n trong h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00fd quan h\u1ec7 nh\u00e0 cung c\u1ea5p SAP SRM. Do thi\u1ebfu c\u01a1 ch\u1ebf ki\u1ec3m tra \u0111\u1ecbnh d\u1ea1ng v\u00e0 n\u1ed9i dung t\u1ec7p, k\u1ebb t\u1ea5n c\u00f4ng c\u00f3 th\u1ec3 t\u1ea3i l\u00ean c\u00e1c t\u1ec7p \u0111\u1ed9c h\u1ea1i, bao g\u1ed3m c\u1ea3 t\u1ec7p th\u1ef1c thi, t\u1eeb \u0111\u00f3 m\u1edf \u0111\u01b0\u1eddng cho vi\u1ec7c ph\u00e1t t\u00e1n m\u00e3 \u0111\u1ed9c ho\u1eb7c chi\u1ebfm quy\u1ec1n \u0111i\u1ec1u khi\u1ec3n \u1ee9ng d\u1ee5ng. L\u1ed7 h\u1ed5ng n\u00e0y \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c phi\u00ean b\u1ea3n SRMNXP01 100 v\u00e0 150, g\u00e2y r\u1ee7i ro \u0111\u1eb7c bi\u1ec7t l\u1edbn cho c\u00e1c h\u1ec7 th\u1ed1ng SRM \u0111ang \u0111\u1ea3m nhi\u1ec7m ho\u1ea1t \u0111\u1ed9ng mua s\u1eafm v\u00e0 qu\u1ea3n l\u00fd chu\u1ed7i cung \u1ee9ng trong doanh nghi\u1ec7p.<\/p>\n

Ngo\u00e0i ba l\u1ed7i nghi\u00eam tr\u1ecdng, b\u1ea3n c\u1eadp nh\u1eadt th\u00e1ng n\u00e0y c\u00f2n kh\u1eafc ph\u1ee5c nhi\u1ec1u l\u1ed7 h\u1ed5ng \u1edf m\u1ee9c cao, bao g\u1ed3m m\u1ed9t l\u1ed7i t\u1eeb ch\u1ed1i d\u1ecbch v\u1ee5 trong SAP Commerce Cloud v\u1edbi \u0111i\u1ec3m 7,5 v\u00e0 m\u1ed9t l\u1ed7i c\u1ea5u h\u00ecnh b\u1ea3o m\u1eadt sai trong b\u1ed9 c\u00f4ng c\u1ee5 t\u00edch h\u1ee3p d\u1eef li\u1ec7u SAP Data Hub v\u1edbi \u0111i\u1ec3m 7,1. C\u00e1c l\u1ed7i n\u00e0y c\u00f3 th\u1ec3 khi\u1ebfn d\u1ecbch v\u1ee5 b\u1ecb gi\u00e1n \u0111o\u1ea1n ho\u1eb7c b\u1ecb khai th\u00e1c \u0111\u1ec3 m\u1edf r\u1ed9ng ph\u1ea1m vi t\u1ea5n c\u00f4ng trong m\u00f4i tr\u01b0\u1eddng t\u00edch h\u1ee3p d\u1eef li\u1ec7u doanh nghi\u1ec7p.<\/p>\n

Nh\u1eefng l\u1ed7i \u1edf m\u1ee9c trung b\u00ecnh v\u00e0 th\u1ea5p \u0111\u01b0\u1ee3c SAP c\u00f4ng b\u1ed1 c\u00f9ng \u0111\u1ee3t ch\u1ee7 y\u1ebfu li\u00ean quan \u0111\u1ebfn r\u00f2 r\u1ec9 th\u00f4ng tin, ch\u00e8n m\u00e3, t\u1ea5n c\u00f4ng CSRF v\u00e0 sai s\u00f3t ki\u1ec3m tra ph\u00e2n quy\u1ec1n trong c\u00e1c n\u1ec1n t\u1ea3ng nh\u01b0 NetWeaver, S\/4HANA v\u00e0 BusinessObjects. M\u1ed9t s\u1ed1 b\u1ea3n v\u00e1 c\u0169ng c\u1eadp nh\u1eadt cho c\u00e1c l\u1ed7 h\u1ed5ng t\u1eebng \u0111\u01b0\u1ee3c c\u00f4ng b\u1ed1 tr\u01b0\u1edbc \u0111\u00f3 trong n\u0103m nh\u01b0 l\u1ed7i r\u00f2 r\u1ec9 th\u00f4ng tin trong NetWeaver AS ABAP v\u00e0 l\u1ed7i b\u1ecf qua ki\u1ec3m tra quy\u1ec1n trong NetWeaver.<\/p>\n

SAP khuy\u1ebfn c\u00e1o ng\u01b0\u1eddi d\u00f9ng v\u00e0 doanh nghi\u1ec7p nhanh ch\u00f3ng tri\u1ec3n khai b\u1ea3n v\u00e1 \u0111\u1ec3 tr\u00e1nh nguy c\u01a1 b\u1ecb khai th\u00e1c.<\/p>\n

Theo Security Online<\/i><\/b>\u200b<\/div>\n
Theo: https:\/\/whitehat.vn\/threads\/sap-va-lo-hong-10-diem-trong-netweaver-ngan-nguy-co-chiem-quyen-he-thong-tu-xa.18839\/<\/a><\/i><\/div>\n","protected":false},"excerpt":{"rendered":"

SAP v\u1eeba c\u00f4ng b\u1ed1 b\u1ea3n v\u00e1 b\u1ea3o m\u1eadt th\u00e1ng 10\/2025, kh\u1eafc ph\u1ee5c t\u1ed5ng c\u1ed9ng 13 l\u1ed7 h\u1ed5ng m\u1edbi v\u00e0 3 b\u1ea3n c\u1eadp nh\u1eadt trong nhi\u1ec1u s\u1ea3n ph\u1ea9m doanh nghi\u1ec7p c\u1ee7a h\u00e3ng. T\u00e2m \u0111i\u1ec3m c\u1ee7a \u0111\u1ee3t v\u00e1 n\u00e0y l\u00e0 l\u1ed7 h\u1ed5ng nghi\u00eam tr\u1ecdng CVE-2025-42944 trong n\u1ec1n t\u1ea3ng SAP NetWeaver AS Java, \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 \u0111i\u1ec3m tuy\u1ec7t […]<\/p>\n","protected":false},"author":46,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[],"class_list":["post-10531","post","type-post","status-publish","format-standard","hentry","category-tin-tuc-cua-vien"],"_links":{"self":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10531","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/users\/46"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/comments?post=10531"}],"version-history":[{"count":0,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10531\/revisions"}],"wp:attachment":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/media?parent=10531"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/categories?post=10531"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/tags?post=10531"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}