Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/22 12:0 a.m.6 views

SAP Netweaver Visual Composer Insecure Deserialization (3604119)

SAP NetWeaver Visual Composer is affected by an insecure deserialization vulnerability caused by insufficient validation of uploaded content, when deserialized, provided by a high-privileged user. This allows an attacker to potentially compromise the confidentiality, integrity, and availability o...

9.1CVSS8.6AI score0.11222EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2025/05/15 1:10 a.m.20 views

CVE-2025-42999

SAP NetWeaver Visual Composer Metadata Uploader is vulnerable when a privileged user can upload untrusted or malicious content which, when deserialized, could potentially lead to a compromise of confidentiality, integrity, and availability of the host system...

9.1CVSS7AI score0.11222EPSS
Exploits3References1
Cvelist
Cvelist
added 2025/05/13 12:17 a.m.126 views

CVE-2025-42999 Insecure Deserialization in SAP NetWeaver (Visual Composer development server)

SAP NetWeaver Visual Composer Metadata Uploader is vulnerable when a privileged user can upload untrusted or malicious content which, when deserialized, could potentially lead to a compromise of confidentiality, integrity, and availability of the host system...

9.1CVSS0.11222EPSS
Exploits3References2
CVE
CVE
added 2025/05/13 12:17 a.m.324 views

CVE-2025-42999

CVE-2025-42999 affects SAP NetWeaver Visual Composer Metadata Uploader. It is a deserialization vulnerability that can allow a privileged attacker to compromise confidentiality, integrity, and availability of the host system. Connected documents corroborate a broader context: CVE-2025-31324 (unre...

9.1CVSS9.2AI score0.11222EPSS
In wildExploits3References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/13 12:17 a.m.10 views

CVE-2025-42999 Insecure Deserialization in SAP NetWeaver (Visual Composer development server)

SAP NetWeaver Visual Composer Metadata Uploader is vulnerable when a privileged user can upload untrusted or malicious content which, when deserialized, could potentially lead to a compromise of confidentiality, integrity, and availability of the host system...

9.1CVSS7AI score0.11222EPSS
Exploits3References2
Rows per page
Query Builder