CVE-2025-42956

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP and ABAP Platform (affected versions not specified)

Description: The issue allows an unauthenticated attacker to create a malicious link that can be made publicly available. When an authenticated victim clicks on this link, the system uses injected input data to create content that, when executed in the victim's browser, has a low impact on confidentiality and integrity, with no effect on the application's availability.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.