/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- A critical vulnerability (CVE-2025-68161) has been identified in the PI adapter related to the log4j library.
- The vulnerability affects Apache Log4j versions below 2.25.3, with the installed version being 2.23.1.
- Path of the affected file: /usr/sap/SID/J00/j2ee/cluster/bin/ext/com.sap.aii.adapter.ws.cxf.lib/lib/org.apache.logging.log4j-log4j-core-2.23.1.jar.
Read more...
Environment
- SAP NetWeaver 7.50
Product
SAP NetWeaver all versions
Keywords
log4j vulnerability, CVE-2025-68161, PI adapter, Apache Log4j, J2EE Adapter Framework, man-in-the-middle attack, critical vulnerability, mitigation plan, log4j version 2.23.1, log4j library issue, security vulnerability , KBA , BC-XI-CON-AFW , J2EE Adapter Framework , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)