Description The Tomcat libraries version 10.1.31 used by ICM-AS 12.4.2 are affected by critical (9.8 score) CVE-2025-24813, see: https://nvd.nist.gov/vuln/detail/CVE-2025-24813 null Bug null Fixed and verified Closed null Critical AdoWorkItem 106268 Infrastructure Products Products ICM 106186 Parent

Description Hybrid Mode PWA has problems with Add To Basket operation for anonymous basket operations A PWA allows anonymous shopping to create baskets. In case of hybrid mode the view cart button create an ICM basket. The point is that the ICM basket is not created in anonymous user scenario. Steps

Description Since the web server deployment of ICM version 7.10.41.6 the WAA crawling does not work anymore. WAA version rollback to previous working version. Steps to Repeat Configure WAA crawler. Test on env with ICM version older than 7.10.41.6-LTS and then with 7.10.41.6-LTS or higher Business Impact

Description The dynamic inclusion of the Backoffice Tabs with search index & search engine specific Tabs is not working. This is caused due to the templates are now resources and the '.' is specifically considered as a package separator. In other words: Template ids with a dot '.' will not work anymore

Description On updating the quantity of a quote product without a price, a NullPointerException is thrown: ERROR [inSPIRED-inTRONICS_Business-Site] [rest] com.intershop.component.rest.internal.application.RestExceptionMapper "Server failed do handle the current REST request" java.lang.NullPointerException:

Description Changed standard job configurations gets overwritten during migration to ICM >= 12.1.0 Steps to Repeat Change the configuration e.g. enabled/scheduled of standard jobs e.g. of SLDSystem (init_operations) Migrate to version >=12.1 The configuration is reset to the original (dbinit) state.

Description ORMProductBOImpl line 1249 throws a NPE, if product is null. 1241 private CatalogCategoryBO getDefaultCatalogCategory(final Product product) 1242 { 1243 final AppContext appContext = AppContextUtil.getCurrentAppContext(); 1244 final ApplicationBO applicationBO = appContext.getVariable(ApplicationBO

Description Using Short Link redirects to handle category page URLs without trailing slash leads to a redirect loop and error page for both URLs (with and without trailing slash /) Short Link configuration example: Source URL:* https://jxdemoserver.intershop.de/WFS/inTRONICS/en_US/-/USD/Computers/897

Description The webserver requests the wrong synonym directory for static sitemap file, resulting in old data or broken sitemap being returned in the storefront. The synonym directory "1" or "2" is stored in a cache on the application server side. The cache is only cleared after the replication or an

Description The wrapper REST endpoint api/auth returns token up to five minutes after they are expired. Expected Behavior The returned token should have a validity of at least x minutes. null Bug null Verified Closed null Major AdoWorkItem 105112 Sparque Wrapper Products SPARQUE.AI 0 Fixed in Commit