What is the severity of CVE-2025-27431?

CVE-2025-27431 has been classified as a medium severity vulnerability due to its potential for exploitation via stored XSS.

How do I fix CVE-2025-27431?

To mitigate CVE-2025-27431, ensure that your SAP NetWeaver Application Server Java is updated with the latest security patches provided by SAP.

What kinds of attacks can CVE-2025-27431 enable?

CVE-2025-27431 can enable attackers to perform stored cross-site scripting attacks, potentially leading to the theft of user information or session hijacking.

Who is affected by CVE-2025-27431?

Any organization using SAP NetWeaver Application Server Java is potentially affected by CVE-2025-27431.

What steps should I take to protect my application from CVE-2025-27431?

To protect your application from CVE-2025-27431, conduct regular security assessments and apply all recommended updates and patches from SAP.

Vulnerability/
CVE-2025-27431

medium

5.4

CWE

EPSS

0.027%

11/3/2025

CVE-2025-27431: Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server Java

First published: Tue Mar 11 2025(Updated: )

User management functionality in SAP NetWeaver Application Server Java is vulnerable to Stored Cross-Site Scripting (XSS). This could enable an attacker to inject malicious payload that gets stored and executed when a user accesses the functionality, hence leading to information disclosure or unauthorized data modifications within the scope of victim�s browser. There is no impact on availability.

Credit: cna@sap.com

Affected Software	Affected Version	How to fix
SAP NetWeaver AS for Java

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2025-27431?
CVE-2025-27431 has been classified as a medium severity vulnerability due to its potential for exploitation via stored XSS.
How do I fix CVE-2025-27431?
To mitigate CVE-2025-27431, ensure that your SAP NetWeaver Application Server Java is updated with the latest security patches provided by SAP.
What kinds of attacks can CVE-2025-27431 enable?
CVE-2025-27431 can enable attackers to perform stored cross-site scripting attacks, potentially leading to the theft of user information or session hijacking.
Who is affected by CVE-2025-27431?
Any organization using SAP NetWeaver Application Server Java is potentially affected by CVE-2025-27431.
What steps should I take to protect my application from CVE-2025-27431?
To protect your application from CVE-2025-27431, conduct regular security assessments and apply all recommended updates and patches from SAP.

agent/references
agent/title
agent/first-publish-date
agent/description
agent/type
agent/softwarecombine
collector/nvd-api
source/NVD
agent/author
agent/severity
agent/event
agent/source
agent/tags
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
collector/epss-latest
source/FIRST
agent/epss
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/sap
canonical/sap netweaver as for java

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.