📦 Web Dispatcher

CVE-2023-40309 is an authentication bypass vulnerability in SAP CommonCryptoLib that allows authenticated users to escalate privileges by bypassing authorization checks. This affects SAP applications ...

CVE-2022-22536 is a critical HTTP request smuggling vulnerability in multiple SAP components that allows unauthenticated attackers to prepend malicious data to legitimate user requests. This enables i...

An unauthenticated attacker can send specially crafted requests to SAP Web Dispatcher, which may cause back-end servers to confuse message boundaries and execute malicious payloads. This vulnerability...

CVE-2023-35871 is a memory corruption vulnerability in SAP Web Dispatcher and related components that allows unauthenticated attackers to cause logical errors in memory management. This can lead to in...

CVE-2022-28773 is an uncontrolled recursion vulnerability in SAP Web Dispatcher and SAP Internet Communication Manager that can cause a denial of service through application crashes. The affected comp...

CVE-2022-28772 is a stack-based buffer overflow vulnerability in SAP Web Dispatcher and Internet Communication Manager. Attackers can send overlong input values to overwrite the program stack, causing...