Security Advisory

CVE-2025-42922

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-09 02:09:38

Last updated 2026-02-26 17:49:06

Assigner sap

State PUBLISHED

Description

SAP NetWeaver AS Java allows an attacker authenticated as a non-administrative user to use a flaw in an available service to upload an arbitrary file. This file when executed can lead to a full compromise of confidentiality, integrity and availability of the system.

← Browse all CVEs View on cve.org ↗