Security Advisory

CVE-2025-42977

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-10 00:10:43

Last updated 2025-06-10 15:26:56

Assigner sap

State PUBLISHED

Description

SAP NetWeaver Visual Composer contains a Directory Traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on integrity.

← Browse all CVEs View on cve.org ↗