CVE-2025-31324

⚠ KEVEPSS 43.7%

SAP NetWeaver Unrestricted File Upload Vulnerability

Added to CISA KEV: 4/29/2025

Description

SAP NetWeaver Visual Composer Metadata Uploader contains an unrestricted file upload vulnerability that allows an unauthenticated agent to upload potentially malicious executable binaries.

Affected packages (0)

No package mapping in OSV.