CNNVD-202512-1494 Information
CNNVD ID
CNNVD-202512-1494
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
SAP Web Dispatcher等都是德国思爱普(SAP)公司的产品。SAP Web Dispatcher是Load Balancing 的核心组件,支持负载均衡,提供反向代理的功能,使得外网用户可以访问到内部应用。SAP Internet Communication Manager(SAP ICM)是一个 SAP NetWeaver 应用程序服务器的组件。SAP Content Server是一个组件。 SAP多款产品存在缓冲区错误漏洞,该漏洞源于逻辑错误导致内存损坏,可能影响系统可用性。以下产品受到影响:SAP Web Dispatcher、Internet Communication Manager和SAP Content Server。
Description (English)
SAP Web Dispatcher and others are products of SAP in Germany. SAP Web Dispatcher is the core component of Load Balancing, which supports load balance and provides the function of reverse agent and allows access to internal applications by offline users. SAP Internet Community Manager (SAP ICM) is a component of the SAP NetWeaver application server. SAP Content Server is a component. There is an error loophole in the buffer zone for SAP products, which arises from a logical error leading to memory damage that may affect the availability of the system. The following products were affected: SAP Web Dispatcher, Internet Community Manager and SAP Content Server.
Hazard Level
Medium
Vulnerability Type
缓冲区错误
Affected Vendor
思爱普
Published
2025-12-09
Last Modified
2026-02-24
References
https://me.sap.com/notes/3677544 https://url.sap/sapsecuritypatchday
Patch
https://url.sap/sapsecuritypatchday
Share on: