These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2025-42999 is a SAP NetWeaver deserialization vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2025-05-15. That KEV listing means the issue is confirmed to be exploited in the wild, so remediation should be treated as urgent even though the supplied corpus does not include a CVSS score or a detailed vendor impact statement. SAP’s guidance is referenced by CISA, and the s [truncated]
CVE-2025-31324 is a SAP NetWeaver unrestricted file upload vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2025-04-29. CISA also marks it as having known ransomware campaign use, which raises the defensive priority even though no CVSS score was provided in the supplied corpus. Organizations running SAP NetWeaver should treat this as an urgent exposure to assess, mitigate, a [truncated]
CISA has added CVE-2017-12637, described as a SAP NetWeaver directory traversal vulnerability, to its Known Exploited Vulnerabilities catalog. For defenders, that means the issue is considered known to be exploited and should be treated as urgent. CISA’s listed guidance is to apply vendor mitigations, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations [truncated]
CVE-2019-0344 is a deserialization of untrusted data vulnerability in SAP Commerce Cloud. CISA added it to the Known Exploited Vulnerabilities catalog on 2024-09-30, indicating known exploitation. The supplied corpus does not include the full vendor advisory text, so the safest response is to follow SAP’s mitigation guidance immediately or discontinue use if mitigations are not available.
CVE-2022-22536 is a SAP HTTP request smuggling vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2022-08-18. Because it is in KEV, organizations should treat it as actively exploited risk and prioritize vendor updates over routine maintenance windows. CISA’s entry specifies that the required action is to apply updates per vendor instructions.
CVE-2021-38163 is a SAP NetWeaver unrestricted file upload vulnerability. CISA added it to the Known Exploited Vulnerabilities catalog on 2022-06-09, which means it is treated as a known exploited issue and should be prioritized for remediation. The supplied record directs defenders to apply updates per vendor instructions.
CVE-2016-2388 is a SAP NetWeaver information disclosure vulnerability that CISA has listed in its Known Exploited Vulnerabilities catalog. That makes it a practical remediation priority for any organization running affected SAP NetWeaver systems, especially where exposure could increase the impact of data leakage. CISA’s guidance for this item is to apply updates per the vendor’s instructions.
CVE-2016-2386 is a SAP NetWeaver SQL injection vulnerability that CISA lists in its Known Exploited Vulnerabilities catalog. For defenders, the key signal is not just the vulnerability class but the KEV status: CISA marked it as known exploited on 2022-06-09 and set a remediation due date of 2022-06-30. Public details in the supplied corpus are limited, so the safest response is to treat SAP NetWeaver sys [truncated]
CVE-2020-6287 is a SAP NetWeaver vulnerability described as a missing authentication issue for a critical function. CISA has included it in the Known Exploited Vulnerabilities catalog, which makes it a priority for asset owners even when additional technical detail is limited in the public record supplied here. The defensive takeaway is straightforward: identify any SAP NetWeaver deployments, confirm whet [truncated]
CVE-2020-6207 is a SAP Solution Manager vulnerability described as a missing authentication issue for a critical function. It is listed in CISA’s Known Exploited Vulnerabilities catalog, which makes it a high-priority remediation item for any organization running SAP Solution Manager.
CVE-2018-2380 is a SAP Customer Relationship Management (CRM) path traversal vulnerability that CISA has listed in its Known Exploited Vulnerabilities catalog. The KEV record also marks known ransomware campaign use as "Known," which makes this a high-priority patching item for any environment running SAP CRM. The supplied official guidance is straightforward: apply updates per vendor instructions.
CVE-2016-9563 is identified in the supplied records as an XML External Entity (XXE) vulnerability affecting SAP NetWeaver. CISA added it to the Known Exploited Vulnerabilities catalog, which indicates observed exploitation and makes it a priority for defensive remediation. The supplied KEV entry directs defenders to apply updates per vendor instructions.
CVE-2016-3976 is a SAP NetWeaver directory traversal vulnerability that CISA included in its Known Exploited Vulnerabilities catalog. The available record does not provide a CVSS score, so defenders should treat it as a prioritized remediation item based on known exploitation status rather than severity scoring alone. CISA’s guidance is to apply updates per vendor instructions.
CVE-2010-5326 is recorded by CISA’s Known Exploited Vulnerabilities (KEV) catalog as a SAP NetWeaver remote code execution vulnerability. Because it is listed in KEV, defenders should treat it as operationally important and prioritize vendor-directed remediation. The supplied source corpus does not include deeper technical details or a CVSS score, so response planning should rely on the official CVE, NVD, [truncated]
CVE-2017-5997 describes a remotely reachable denial-of-service condition in the SAP Message Server HTTP daemon. According to the CVE/NVD record, repeated requests to msgserver/group?group? with a crafted group parameter size can drive memory consumption and crash the process. The issue is associated with SAP Kernel releases 7.21-7.49 in the CVE description and maps to a high-availability risk rather than [truncated]
CVE-2016-10079 is a network-reachable denial-of-service issue in SAP SAPlpd on Windows. According to NVD, sending a long string to TCP port 515 can crash the service, affecting SAP GUI 7.40 deployments with SAPlpd through version 7400.3.11.33. The issue is rated HIGH because it is reachable over the network and does not require authentication or user interaction, but the documented impact is availability only.
CVE-2017-5372 is a high-severity SAP NetWeaver AS Java information-disclosure issue in the P4 SERVERCORE MSPRuntimeInterface. Remote attackers could obtain sensitive system information because several exposed functions did not enforce authorization checks. NVD classifies the weakness as CWE-200 and rates the issue as high impact to confidentiality, with no direct integrity or availability impact described.
