Sap Se Sap Netweaver Application Server Java vulnerabilities

CVE-2026-23686 [LOW] CWE-113 CVE-2026-23686: Due to a CRLF Injection vulnerability in SAP NetWeaver Application Server Java, an authenticated att Due to a CRLF Injection vulnerability in SAP NetWeaver Application Server Java, an authenticated attacker with administrative access could submit specially crafted content to the application. If processed by the application, this content enables injection of untrusted entries into generated configuration, allowing manipulation of application-controlled

CVE-2025-42919 [MEDIUM] CWE-22 CVE-2025-42919: Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal me Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal metadata files could be accessed via manipulated URLs. An unauthenticated attacker could exploit this vulnerability by inserting arbitrary path components in the request, allowing unauthorized access to sensitive application metadata. This results in a p

CVE-2025-42926 [MEDIUM] CWE-306 CVE-2025-42926: SAP NetWeaver Application Server Java does not perform an authentication check when an attacker atte SAP NetWeaver Application Server Java does not perform an authentication check when an attacker attempts to access internal files within the web application.Upon successfully exploitation, an unauthenticated attacker could access these files to gather additional sensitive information about the system.This vulnerability has a low impact on confidenti

CVE-2025-42978 [LOW] CWE-940 CVE-2025-42978: The widely used component that establishes outbound TLS connections in SAP NetWeaver Application Ser The widely used component that establishes outbound TLS connections in SAP NetWeaver Application Server Java does not reliably match the hostname that is used for the connection against the wildcard hostname defined in the received certificate of remote TLS server. This might lead to the outbound connection being established to a possibly malicious rem

CVE-2025-27431 [MEDIUM] CWE-79 CVE-2025-27431: User management functionality in SAP NetWeaver Application Server Java is vulnerable to Stored Cross User management functionality in SAP NetWeaver Application Server Java is vulnerable to Stored Cross-Site Scripting (XSS). This could enable an attacker to inject malicious payload that gets stored and executed when a user accesses the functionality, hence leading to information disclosure or unauthorized data modifications within the scope of victim

CVE-2025-24869 [MEDIUM] CWE-863 CVE-2025-24869: SAP NetWeaver Application Server Java allows an attacker to access an endpoint that can disclose inf SAP NetWeaver Application Server Java allows an attacker to access an endpoint that can disclose information about deployed server components, including their XML definitions. This information should ideally be restricted to customer administrators, even though they may not need it. These XML files are not entirely SAP-internal as they are deployed

CVE-2025-0054 [MEDIUM] CWE-79 CVE-2025-0054: SAP NetWeaver Application Server Java does not sufficiently handle user input, resulting in a stored SAP NetWeaver Application Server Java does not sufficiently handle user input, resulting in a stored cross-site scripting vulnerability. The application allows attackers with basic user privileges to store a Javascript payload on the server, which could be later executed in the victim's web browser. With this the attacker might be able to read or modif

CVE-2025-0067 [MEDIUM] CWE-862 CVE-2025-0067: Due to a missing authorization check on service endpoints in the SAP NetWeaver Application Server Ja Due to a missing authorization check on service endpoints in the SAP NetWeaver Application Server Java, an attacker with standard user role can create JCo connection entries, which are used for remote function calls from or to the application server. This could lead to low impact on confidentiality, integrity, and availability of the application.

CVE-2022-22532 [CRITICAL] CWE-444 CVE-2022-22532: In SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7 In SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an unauthenticated attacker could submit a crafted HTTP server request which triggers improper shared memory buffer handling. This could allow the malicious payload to be executed and hence execute functi

CVE-2022-22533 [HIGH] CWE-416 CVE-2022-22533: Due to improper error handling in SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7 Due to improper error handling in SAP NetWeaver Application Server Java - versions KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC, 7.22, 7.22EXT, 7.49, 7.53, KERNEL 7.22, 7.49, 7.53, an attacker could submit multiple HTTP server requests resulting in errors, such that it consumes the memory buffer. This could result in system shutdown rendering the system un

CVE-2020-6365 [MEDIUM] CWE-601 CVE-2020-6365: SAP NetWeaver AS Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, Start Page allows an una SAP NetWeaver AS Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, Start Page allows an unauthenticated remote attacker to redirect users to a malicious site due to insufficient reverse tabnabbing URL validation. The attacker could execute phishing attacks to steal credentials of the victim or to redirect users to untrusted web pages containi

CVE-2020-6319 [MEDIUM] CWE-79 CVE-2020-6319: SAP NetWeaver Application Server Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allow SAP NetWeaver Application Server Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allows an unauthenticated attacker to include JavaScript blocks in any web page or URL with different symbols which are otherwise not allowed. On successful exploitation an attacker can steal authentication information of the user, such as data relating to hi