New Exploits for Unsecure SAP Systems

CISA warns that misconfigured, internet-facing SAP components (Gateways, Routers, Message Servers) are vulnerable to public exploits (referred to as “10KBLAZE”), enabling anonymous OS command execution, MITM and credential theft; the alert includes exposure counts for U.S. systems, a Snort detection signature, and recommended configuration and access-control mitigations.