High severity7.5NVD Advisory· Published Nov 23, 2016· Updated Jun 17, 2026
CVE-2016-9562
CVE-2016-9562
Description
SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of Service (null pointer exception and icman outage) via an HTTPS request to the sap.com~P4TunnelingApp!web/myServlet URI, aka SAP Security Note 2313835.
Affected products
2- cpe:2.3:a:sap:netweaver_application_server_java:7.40:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/92418nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/95363nvdThird Party AdvisoryVDB Entry
- erpscan.io/advisories/erpscan-16-033-sap-netweaver-java-icman-dos-vulnerability/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.