Vulnerabilities

CVE-2025-42919 - Information Disclosure vulnerability in SAP NetWeaver Application Server Java

2025-11-11 0 views admin

CVE ID : CVE-2025-42919 Published : Nov. 11, 2025, 1:15 a.m. | 16 minutes ago Description : Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal metadata files could be accessed via manipulated URLs. An unauthenticated attacker could exploit this vulnerability by inserting arbitrary path components in the request, allowing unauthorized access to sensitive application metadata. This results in a partial compromise of the confidentiality of the information without affecting the integrity or availability of the application server. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-42919

Severity

MEDIUM

Published

Nov. 11, 2025

Affected Product: Java

Impact: Information Disclosure

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-42919mediumjava

CVE-2025-42919 - Information Disclosure vulnerability in SAP NetWeaver Application Server Java

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2024-42718 - Croogo CMS Path Traversal Vulnerability

CVE-2024-44065 - Cloudlog Blind SQL Injection

CVE-2025-66737 - Yealink Phone Directory Traversal Vulnerability

CVE-2025-25341 - Libxmljs XML Denial-of-Service Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting