Missing Authorization check in SAP NetWeaver (Visual Composer development server) 漏洞信息(CVE-2025-31324)

一、漏洞 CVE-2025-31324 基础信息

漏洞信息

                                        # SAP NetWeaver中的授权检查缺失（视觉开发服务器）

## 漏洞概述
SAP NetWeaver Visual Composer Metadata Uploader由于缺乏适当的授权保护，允许未认证的攻击者上传潜在的恶意可执行二进制文件，从而严重危害目标主机系统。

## 影响版本
未指定具体版本

## 漏洞细节
SAP NetWeaver Visual Composer Metadata Uploader未实施适当的授权保护机制，导致任何未认证的用户均可上传恶意二进制文件至系统。

## 影响
此漏洞可能严重影响系统的保密性、完整性和可用性。

提示

尽管我们采用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确，但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利！

漏洞标题

Missing Authorization check in SAP NetWeaver (Visual Composer development server)

来源：美国国家漏洞数据库 NVD

漏洞描述信息

SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.

来源：美国国家漏洞数据库 NVD

CVSS信息

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

来源：美国国家漏洞数据库 NVD

漏洞类别

危险类型文件的不加限制上传

来源：美国国家漏洞数据库 NVD

漏洞标题

SAP NetWeaver Visual Composer Metadata Uploader 代码问题漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

SAP NetWeaver Visual Composer Metadata Uploader是德国思爱普（SAP）公司的一个用于辅助建模的工具。 SAP NetWeaver Visual Composer Metadata Uploader存在代码问题漏洞，该漏洞源于授权不当，可能导致上传恶意可执行文件。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

代码问题

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2025-31324 的公开POC

#	POC 描述	源链接	神龙链接
1	SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-31324.yaml	POC详情
2	SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system.	https://github.com/rxerium/CVE-2025-31324	POC详情
3	CVE-2025-31324, SAP Exploit	https://github.com/redrays-io/CVE-2025-31324	POC详情
4	None	https://github.com/Onapsis/Onapsis_CVE-2025-31324_Scanner_Tools	POC详情
5	SAP PoC para CVE-2025-31324	https://github.com/moften/CVE-2025-31324	POC详情
6	Nuclei template for cve-2025-31324 (SAP)	https://github.com/moften/CVE-2025-31324-NUCLEI	POC详情
7	SAP NetWeaver Unauthenticated Remote Code Execution	https://github.com/Alizngnc/SAP-CVE-2025-31324	POC详情
8	Proof-of-Concept for CVE-2025-31324: Unauthenticated upload in SAP NetWeaver Visual Composer Metadata Uploader	https://github.com/ODST-Forge/CVE-2025-31324_PoC	POC详情
9	Proof-of-Concept for CVE-2025-31324: Unauthenticated upload in SAP NetWeaver Visual Composer Metadata Uploader	https://github.com/abrewer251/CVE-2025-31324_PoC_SAP	POC详情
10	Unauthenticated upload in SAP NetWeaver Visual Composer Metadata Uploader	https://github.com/Pengrey/CVE-2025-31324	POC详情
11	Python-based Burp Suite extension is designed to detect the presence of CVE-2025-31324	https://github.com/BlueOWL-overlord/Burp_CVE-2025-31324	POC详情
12	A totally unauthenticated file-upload endpoint in Visual Composer lets anyone drop arbitrary files (e.g., a JSP web-shell) onto the server.	https://github.com/nullcult/CVE-2025-31324-File-Upload	POC详情
13	🔍 A simple Bash script to detect malicious JSP webshells, including those used in exploits of SAP NetWeaver CVE-2025-31324.	https://github.com/respondiq/jsp-webshell-scanner	POC详情
14	A Python-based security scanner for identifying the CVE-2025-31324 vulnerability in SAP Visual Composer systems, and detecting known Indicators of Compromise (IOCs) such as malicious .jsp.	https://github.com/JonathanStross/CVE-2025-31324	POC详情
15	CVE-2025-31324 & CVE-2025-42999 vulnerability and compromise assessment tool	https://github.com/Onapsis/Onapsis-Mandiant-CVE-2025-31324-Vuln-Compromise-Assessment	POC详情
16	Research Purposes only	https://github.com/rf-peixoto/sap_netweaver_cve-2025-31324-	POC详情
17	None	https://github.com/NULLTRACE0X/CVE-2025-31324	POC详情
18	sap-netweaver-cve-2025-31324-check	https://github.com/nairuzabulhul/nuclei-template-cve-2025-31324-check	POC详情
19	SAP NetWeaver Visual Composer Metadata Uploader <= 7.50 CVE-2025-31324 PoC	https://github.com/sug4r-wr41th/CVE-2025-31324	POC详情

三、漏洞 CVE-2025-31324 的情报信息

标题： SAP for Me: Sign In -- 🔗来源链接

标签：
标题： Access Denied -- 🔗来源链接

标签：
神龙速读
https://nvd.nist.gov/vuln/detail/CVE-2025-31324

四、漏洞 CVE-2025-31324 的评论

暂无评论

一、 漏洞 CVE-2025-31324 基础信息

漏洞信息

提示

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2025-31324 的公开POC

三、漏洞 CVE-2025-31324 的情报信息

四、漏洞 CVE-2025-31324 的评论

发表评论

一、漏洞 CVE-2025-31324 基础信息