Sap Se Sap Netweaver Application Server For Java vulnerabilities

CVE-2025-42963 [CRITICAL] CWE-502 CVE-2025-42963: A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticat A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserialization. Successful exploitation can lead to full operating system compromise, granting attackers complete control over the affected system. This results in a severe impact on the confiden

CVE-2022-27669 [HIGH] CWE-862 CVE-2022-27669: An unauthenticated user can use functions of XML Data Archiving Service of SAP NetWeaver Application An unauthenticated user can use functions of XML Data Archiving Service of SAP NetWeaver Application Server for Java - version 7.50, to which access should be restricted. This may result in an escalation of privileges.

CVE-2019-0345 [CRITICAL] CWE-918 CVE-2019-0345: A remote unauthenticated attacker can abuse a web service in SAP NetWeaver Application Server for Ja A remote unauthenticated attacker can abuse a web service in SAP NetWeaver Application Server for Java (Administrator System Overview), versions 7.30, 7.31, 7.40, 7.50, by sending a specially crafted XML file and trick the application server into leaking authentication credentials for its own SAP Management console, resulting in Server-Side Request

CVE-2019-0318 [MEDIUM] CVE-2019-0318: Under certain conditions SAP NetWeaver Application Server for Java (Startup Framework), versions 7.2 Under certain conditions SAP NetWeaver Application Server for Java (Startup Framework), versions 7.21, 7.22, 7.45, 7.49, and 7.53, allows an attacker to access information which would otherwise be restricted.