VDB

CESS-2025-42883

CESS-2025-42883 PUBLISHED CVSS 2.7 LOW

Migration Workbench (DX Workbench) in SAP NetWeaver Application Server for ABAP fails to trigger a malware scan when an attacker with administrative privileges uploads files to the application server. An attacker could leverage this and upload a malicious file into the system. This results in a low impact on the integrity of the application.

Risk Scores

CVSS 3.1
2.7
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Timeline

  • Nov 11, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›