CVE-2025-42999

SAP NetWeaver Deserialization Vulnerability

Beschreibung

SAP NetWeaver Visual Composer Metadata Uploader contains a deserialization vulnerability that allows a privileged attacker to compromise the confidentiality, integrity, and availability of the host system by deserializing untrusted or malicious content.

Schweregrad: CRITICAL

CVSS-Score: 9.1

Hersteller: SAP

Produkt: NetWeaver