CVE-2025-27431

Name of the Vulnerable Software and Affected Versions SAP NetWeaver Application Server Java (affected versions not specified)

Description The user management functionality is susceptible to Stored Cross-Site Scripting (XSS), allowing an attacker to inject malicious payload. This could lead to information disclosure or unauthorized data modifications within the scope of the victim's browser when the functionality is accessed. There is no impact on availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.