Name of the Vulnerable Software and Affected Versions:

SAP NetWeaver XML Data Archiving Service (affected versions not specified)

Description:

The issue allows an authenticated attacker with administrative privileges to exploit an insecure Java deserialization vulnerability by sending a specially crafted serialized Java object. This could lead to high impact on confidentiality, integrity, and availability of the application.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.