CVE-2025-42877

Memory Corruption vulnerability in SAP Web Dispatcher, Internet Communication Manager and SAP Content Server

Description

SAP Web Dispatcher, Internet Communication Manager (ICM), and SAP Content Server allow an unauthenticated user to exploit logical errors that lead to a memory corruption vulnerability. This results in high impact on the availability with no impact on confidentiality or integrity of the application.

INFO

Published Date :

2025-12-09T02:14:51.103Z

Last Modified :

2025-12-09T16:02:24.931Z

Source :

sap

AFFECTED PRODUCTS

The following products are affected by CVE-2025-42877 vulnerability.

Vendors	Products
Sap	Content Server Internet Communication Manager Web Dispatcher

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-42877.

URL	Resource
https://me.sap.com/notes/3677544
https://url.sap/sapsecuritypatchday

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact