CVE-2025-0071 – SAP Web Dispatcher and Internet Communication Manager Debugging Trace Mode Information Disclosure

March 11, 2025
3:18 am

CVE ID : CVE-2025-0071

Published : March 11, 2025, 1:15 a.m. | 1 hour, 24 minutes ago

Description : SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application. There is no impact on integrity or availability.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-0071 – SAP Web Dispatcher and Internet Communication Manager Debugging Trace Mode Information Disclosure

Elvescore.io

Recent Posts

CVE-2025-2189 – Tinxy Smart Devices PlainText Credentials Disclosure

CVE-2025-2191 – Claro A7600-A1 RNR4-A72T Ping6 Diagnóstico Cross-Site Scripting Vulnerability

CVE-2025-27893 – Archer Platform Immutable Field Manipulation Information Disclosure

CVE-2024-52285 – SiPass MQTT Authentication Bypass Vulnerability

CVE-2024-56181 – Siemens SIMATIC EFI Variable Manipulation Vulnerability

CVE-2024-56182 – Siemens SIMATIC BIOS Password Bypass Vulnerability

CVE-2025-0071 – SAP Web Dispatcher and Internet Communication Manager Debugging Trace Mode Information Disclosure

CVE-2025-0071 – SAP Web Dispatcher and Internet Communication Manager Debugging Trace Mode Information Disclosure