CVE-2025-42977 – SAP NetWeaver Visual Composer Directory Traversal Vulnerability

June 9, 2025

CVE ID : CVE-2025-42977

Published : June 10, 2025, 1:15 a.m. | 23 minutes ago

Description : SAP NetWeaver Visual Composer contains a Directory Traversal vulnerability caused by insufficient validation of input paths provided by a high-privileged user. This allows an attacker to read or modify arbitrary files, resulting in a high impact on confidentiality and a low impact on integrity.

Severity: 7.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-42984 – SAP S/4HANA Authorization Bypass

Next Article CVE-2025-42982 – SAP GRC Authentication Bypass

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

Understanding the code modernization conundrum

Not just YouTube: Google is using AI to guess your age based on your activity – everywhere

Malicious extensions can use ChatGPT to steal your personal data – here’s how

What Zuckerberg’s ‘personal superintelligence’ sales pitch leaves out

This handy NordVPN tool flags scam calls on Android – even before you answer

Route Optimization through Laravel’s Shallow Resource Architecture

Route Optimization through Laravel’s Shallow Resource Architecture

This Week in Laravel: Laracon News, Free Laravel Idea, and Claude Code Course

Everything We Know About Pest 4

FOSS Weekly #25.31: Kernel 6.16, OpenMandriva Review, Conky Customization, System Monitoring and More

FOSS Weekly #25.31: Kernel 6.16, OpenMandriva Review, Conky Customization, System Monitoring and More

Windows 11’s MSN Widgets board now opens in default browser, such as Chrome (EU only)

Microsoft’s new “move to Windows 11” campaign implies buying OneDrive paid plan

CVE-2025-42977 – SAP NetWeaver Visual Composer Directory Traversal Vulnerability

The hidden risks of browser extensions – and how to stay safe

Minnesota National Guard Deployed After Major Cyberattack on St. Paul City Systems

I finally found a mini PC with a striking design (and the power to back it up)

Rilasciato Scrcpy 3.2: il potente strumento open source per controllare il tuo Android dal computer

CVE-2025-46221 – Apache HTTP Server Authentication Bypass

CVE-2025-54076 – WeGIA Reflected Cross-Site Scripting (XSS)

RustoBot Botnet Exploits Router Flaws in Sophisticated Attacks

Multiple Chrome Vulnerabilities Allow Attackers to Execute Malicious Code Remotely

LLMs Can Now Simulate Massive Societies: Researchers from Fudan University Introduce SocioVerse, an LLM-Agent-Driven World Model for Social Simulation with a User Pool of 10 Million Real Individuals

Researchers present bold ideas for AI at MIT Generative AI Impact Consortium kickoff event

CVE-2025-42977 – SAP NetWeaver Visual Composer Directory Traversal Vulnerability

Related Posts