← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-42999 — Actively Exploited: NetWeaver (SAP)

SAP NetWeaver Visual Composer Metadata Uploader contains a deserialization vulnerability that allows a privileged attacker to compromise the confidentiality, integrity, and availability of the host system by deserializing untrusted or malicious content.

CVE IDCVE-2025-42999
VendorSAP
ProductNetWeaver
Vulnerability nameSAP NetWeaver Deserialization Vulnerability
Date added2025-05-15
Remediation due2025-06-05
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionSAP NetWeaver Visual Composer Metadata Uploader contains a deserialization vulnerability that allows a privileged attacker to compromise the confidentiality, integrity, and availability of the host system by deserializing untrusted or malicious content.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →