CNNVD-202509-1449 Information

CNNVD ID

CNNVD-202509-1449

Related CVE

CVE-2025-42926

• CNNVD Published: 2025-09-09

Description (Chinese)

SAP NetWeaver Application Server Java是德国思爱普（SAP）公司的一款提供了Java运行环境的应用程序服务器。该产品主要用于开发和运行Java EE应用程序。 SAP NetWeaver Application Server Java存在访问控制错误漏洞，该漏洞源于缺少身份验证检查，可能导致访问内部文件。

Description (English)

SAP NetWeaver Application Server Java is an application server that provides the Java operating environment. The product is used mainly for the development and operation of Java EE applications. SAP NetWeaver Application Server Java had an error in access control, which stemmed from the lack of identification checks and could lead to access to internal documents.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

思爱普

Published

2025-09-09

Last Modified

2026-02-24

References

https://me.sap.com/notes/3619465 https://url.sap/sapsecuritypatchday

Patch

https://me.sap.com/notes/3619465