- Description
- A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserialization. Successful exploitation can lead to full operating system compromise, granting attackers complete control over the affected system. This results in a severe impact on the confidentiality, integrity, and availability of the application and host environment.
- Source
- cna@sap.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 9.1
- Impact score
- 6
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
- Severity
- CRITICAL
- cna@sap.com
- CWE-502
- Hype score
- Not currently trending
CVE-2025-42963 (CVSS:9.1, CRITICAL) is Awaiting Analysis. A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator use..https://t.co/l449zuceqS #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
13 Jul 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-42963: Deserialization of Untrusted Data in NetWeaver Application server, 9.1 rating 🔥 Vuln in the LogViewer allows an attacker to get full control over the system. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/a5izaJoeCX #cybersecurity #vulnerability_
@Netlas_io
8 Jul 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-42963 A critical vulnerability in SAP NetWeaver Application server for Java Log Viewer enables authenticated administrator users to exploit unsafe Java object deserializati… https://t.co/w6ZjHOOg7N
@CVEnew
8 Jul 2025
498 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes