Vulnerability in SAP Web Dispatcher and ICM Leads to Unauthorized Access
CVE-2025-42878

8.2HIGH

Key Information:

Vendor: SAP
Status: SAP Web Dispatcher And Internet Communication Manager (icm)
Vendor: CVE Published:; 9 December 2025

What is CVE-2025-42878?

The SAP Web Dispatcher and ICM have a vulnerability that may inadvertently expose internal testing interfaces that should not be accessible in a production environment. When these interfaces are enabled, they can be exploited by unauthenticated attackers, allowing them to access sensitive diagnostic information, send specially crafted requests, or potentially disrupt service availability. This poses significant risks to confidentiality and availability, highlighting the importance of securing such interfaces to protect organizations from potential attacks.

Affected Version(s)

SAP Web Dispatcher and Internet Communication Manager (ICM) KRNL64NUC 7.22

SAP Web Dispatcher and Internet Communication Manager (ICM) 7.22EXT

SAP Web Dispatcher and Internet Communication Manager (ICM) KRNL64UC 7.22

References

https://me.sap.com/notes/3684682

https://url.sap/sapsecuritypatchday

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2025
Vulnerability Reserved
Apr 16, 2025

JSON