SAP Patches Four Critical NetWeaver Flaws in Its June Security Day
Cybersecurity

SAP Patches Four Critical NetWeaver Flaws in Its June Security Day

SAP's June 2026 patch day delivered fixes for four critical vulnerabilities rated as high as CVSS 9.9, including an authentication-bypassing SAML flaw and an unauthenticated memory-corruption bug in NetWeaver that demand immediate attention.

PublishedJune 9, 2026
Read time1 min read
Share
Tagged#news#security#cybersecurity#sap#netweaver#vulnerability
Keep reading
All news →
Microsoft Ships a Record Patch Tuesday: 200 Fixes and Three Zero-Days for June
Cybersecurity·Bruno Digital·1d ago

Microsoft Ships a Record Patch Tuesday: 200 Fixes and Three Zero-Days for June

Microsoft's June rollout is the largest in the program's history, clearing roughly 200 vulnerabilities including three publicly disclosed zero-days and a wormable kernel flaw. For enterprise patch teams, the volume itself is now the threat.

Veeam Patches a Critical Backup Server Flaw as Ransomware Crews Circle
Cybersecurity·Bruno Digital·1d ago

Veeam Patches a Critical Backup Server Flaw as Ransomware Crews Circle

Veeam fixed a CVSS 9.4 remote code execution bug in Backup and Replication that lets any low-privileged domain user seize the backup server, the one system enterprises rely on most when ransomware strikes.

Unauthenticated and Critical: How a LiteLLM Flaw Became a CVSS 10 Path Into AI Infrastructure
Cybersecurity·Bruno Digital·1d ago

Unauthenticated and Critical: How a LiteLLM Flaw Became a CVSS 10 Path Into AI Infrastructure

A command injection bug in the LiteLLM proxy, chained with a Starlette header flaw, turns into unauthenticated remote code execution scored at a perfect CVSS 10, and CISA says it is already being exploited.