CNNVD-202512-1498 Information

CNNVD ID

CNNVD-202512-1498

Related CVE

CVE-2025-42874

• CNNVD Published: 2025-12-09

Description (Chinese)

SAP NetWeaver是德国思爱普（SAP）公司的一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。 SAP NetWeaver存在安全漏洞，该漏洞源于输入验证不足和远程方法调用处理不当，可能导致执行任意代码。

Description (English)

SAP NetWeaver is a service-oriented integrated application platform for SAP Germany. The platform mainly provides an environment for the development and operation of SAP applications. SAP NetWeaver had a security loophole, which stemmed from inadequate input validation and inappropriate remote methods of handling, which could lead to the implementation of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

思爱普

Published

2025-12-09

Last Modified

2026-02-24

References

https://me.sap.com/notes/3640185 https://url.sap/sapsecuritypatchday

Patch

https://url.sap/sapsecuritypatchday