Sap web dispatcher
This hub aggregates every CVE we track for Sap web dispatcher, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
14
CVEs tracked
2
Critical
9
High
1
In CISA KEV
Severity distribution
HIGH9MEDIUM3CRITICAL2
Monthly trend
1
0
0
1
0
0
0
1
0
0
0
0
0
0
0
0
2
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 14 most recently published vulnerabilities affecting Sap web dispatcher.
- CVE-2025-42878Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)8.2
- CVE-2025-42877Memory Corruption vulnerability in SAP Web Dispatcher, Internet Communication Manager and SAP Content Server7.5
- CVE-2025-0071Information Disclosure vulnerability in SAP Web Dispatcher and Internet Communication Manager4.9
- CVE-2024-47590Cross-Site Scripting (XSS) vulnerability in SAP Web Dispatcher8.8
- CVE-2024-33005Missing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content Server6.3
- CVE-2024-22124Information Disclosure vulnerability in SAP NetWeaver Internet Communication Manager4.1
- CVE-2023-40309Missing Authorization check in SAP CommonCryptoLib9.8
- CVE-2023-40308Memory Corruption vulnerability in SAP CommonCryptoLib7.5
- CVE-2023-35871Memory Corruption vulnerability in SAP Web Dispatcher7.7
- CVE-2023-33987Request smuggling and request concatenation in SAP Web Dispatcher8.6
- CVE-2022-28772By overlong input values an attacker may force overwrite of the internal program stack in SAP Web Dispatcher - versions 7.53, 7.77, 7.81, 7.85, 7.86, or Internet Communication Manager - versions KR...7.5
- CVE-2022-28773Due to an uncontrolled recursion in SAP Web Dispatcher and SAP Internet Communication Manager, the application may crash, leading to denial of service, but can be restarted automatically.7.5
- CVE-2022-22536SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and SAP Web Dispatcher are vulnerable for request smuggling and request concaten...KEV10.0
- CVE-2021-38162SAP Web Dispatcher versions - 7.49, 7.53, 7.77, 7.81, KRNL64NUC - 7.22, 7.22EXT, 7.49, KRNL64UC -7.22, 7.22EXT, 7.49, 7.53, KERNEL - 7.22, 7.49, 7.53, 7.77, 7.81, 7.83 processes allow an unauthenti...8.9
Product normalization is registry-driven with AI assist and human review. How it works