Security Advisory

CVE-2025-42966

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-08 00:36:13

Last updated 2026-02-26 18:27:51

Assigner sap

State PUBLISHED

Description

SAP NetWeaver XML Data Archiving Service allows an authenticated attacker with administrative privileges to exploit an insecure Java deserialization vulnerability by sending a specially crafted serialized Java object. This could lead to high impact on confidentiality, integrity, and availability of the application.

← Browse all CVEs View on cve.org ↗