CVE-2025-0057 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting vulnerability. An attacker posing as an admin can upload a photo wit…
Medium CVSS: 4.8

CVE-2025-0057

SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting vulnerability. An attacker posing as an admin can upload a photo with malicious JS content. When a victim visits the vulnerable component, the attacker can read and modify information within the scope of victim's web browser.
Vendor
-
Product
-
CWE
CWE-434
Yayın Tarihi
2025-01-14 01:15:15
Güncelleme
2025-01-14 01:15:15
Source Identifier
cna@sap.com
KEV Date Added
-

Kategoriler

CWE-434 MEDIUM 2025

Referanslar

https://me.sap.com/notes/3514421 https://url.sap/sapsecuritypatchday