Cross-Site Scripting Vulnerability in SAP NetWeaver Application Server ABAP
CVE-2025-25242
6.1MEDIUM
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 11 March 2025
What is CVE-2025-25242?
A vulnerability in SAP NetWeaver Application Server ABAP allows for the execution of malicious scripts, potentially compromising the confidentiality and integrity of user data. While the vulnerability does not affect the availability of the application, it poses a significant security risk by enabling attackers to exploit unvalidated input in web applications. Users are encouraged to take necessary precautions to secure their applications against such threats.
Affected Version(s)
SAP NetWeaver Application Server ABAP SAP_BASIS 740
SAP NetWeaver Application Server ABAP SAP_BASIS 750
SAP NetWeaver Application Server ABAP SAP_BASIS 751