Detections
Analytics

SAP Netweaver Visual Composer Multiple Vulnerabilities (May 2025)

critical Nessus Plugin ID 236840

Language:

Synopsis

The remote SAP Netweaver Visual Composer is affected by multiple vulnerabilities.

Description

SAP NetWeaver Visual Composer is affected by multiple vulnerabilities, including the following:

 - SAP NetWeaver Visual Composer Metadata Uploader is vulnerable when a privileged user can upload untrusted or malicious content which, when deserialized, could potentially lead to a compromise of confidentiality, integrity, and availability of the host system.
 (CVE-2025-42999)

 - SAP S/4HANA Cloud Private Edition or on Premise (SCM Master Data Layer (MDL)) allows an authenticated attacker with SAP standard authorization to execute a certain function module remotely and replace arbitrary ABAP programs, including SAP standard programs. This is due to lack of input validation and no authorization checks. This has low Confidentiality impact but high impact on integrity and availability to the application.
 (CVE-2025-43010)

 - Under certain conditions, SAP Landscape Transformation's PCL Basis module does not perform the necessary authorization checks, allowing authenticated users to access restricted functionalities or data. This can lead to a high impact on confidentiality with no impact on the integrity or availability of the application.
 (CVE-2025-43011)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Apply the appropriate patch according to the vendor advisory.

See Also

http://www.nessus.org/u?276823c2

https://me.sap.com/notes/3594142

Plugin Details

Severity: Critical

ID: 236840

File Name: sap_netweaver_visual_composer_3594142.nasl

Version: 1.2

Type: remote

Family: Web Servers

Published: 5/16/2025

Updated: 5/17/2025

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.5

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2025-31324

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: x-cpe:/a:sap:netweaver_visual_composer

Required KB Items: Settings/ParanoidReport, installed_sw/SAP Netweaver Application Server (AS), installed_sw/SAP Netweaver Visual Composer

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/12/2025

Vulnerability Publication Date: 5/12/2025

CISA Known Exploited Vulnerability Due Dates: 5/20/2025, 6/5/2025

Reference Information

CVE: CVE-2025-26662, CVE-2025-30009, CVE-2025-30010, CVE-2025-30011, CVE-2025-30012, CVE-2025-30018, CVE-2025-31324, CVE-2025-31329, CVE-2025-42997, CVE-2025-42999, CVE-2025-43000, CVE-2025-43002, CVE-2025-43003, CVE-2025-43004, CVE-2025-43005, CVE-2025-43006, CVE-2025-43007, CVE-2025-43008, CVE-2025-43009, CVE-2025-43010, CVE-2025-43011

IAVA: 2025-A-0328