SAP Knowledge Base Article - Preview

3454950 - ICM and SAP Web Dispatcher web-admin pages security concern


It is perceived that the ICM and/or SAP Web Dispatcher Web-based administration interfaces are accessible through the following URL

  • http(s)://<Application Server or SAP Web Dispatcher hostname>:<HTTP(S) port>/sap/admin/public/index.html

Where the end user has read-only access to some administration information without having to logon.



ABAP Platform all versions.

SAP NetWeaver all versions.

SAP Web Dispatcher all versions.


ABAP platform all versions ; SAP NetWeaver all versions ; SAP Web Dispatcher all versions


web admin, webadmin, page, administration, security, vulnerability, assessment, icm, wdp, admin, allowpub, default , KBA , BC-CST-IC , Internet Communication Manager , BC-CST-WDP , Web Dispatcher , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.