Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Tue, 12 Aug 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 12 Aug 2025 12:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Sap
Sap abap Platform Sap application Server Sap as Abap Sap netweaver |
|
Vendors & Products |
Sap
Sap abap Platform Sap application Server Sap as Abap Sap netweaver |
Tue, 12 Aug 2025 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | SAP NetWeaver Application Server ABAP has HTML injection vulnerability. Due to this, an attacker could craft a URL with malicious script as payload and trick a victim with active user session into executing it. Upon successful exploit, this vulnerability could lead to limited access to data or its manipulation. There is no impact on availability. | |
Title | HTML Injection vulnerability in SAP NetWeaver Application Server ABAP | |
Weaknesses | CWE-94 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: sap
Published:
Updated: 2025-08-12T15:56:39.499Z
Reserved: 2025-04-16T13:25:37.187Z
Link: CVE-2025-42945

Updated: 2025-08-12T15:56:34.260Z

Status : Awaiting Analysis
Published: 2025-08-12T03:15:27.163
Modified: 2025-08-12T14:25:33.177
Link: CVE-2025-42945

No data.

Updated: 2025-08-12T11:46:52Z