Vulnerabilities (CVE)

Vendor filter

Sap Subscribe

Product filter

Commerce Cloud Subscribe

Filter

3 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-0344 1 Sap 1 Commerce Cloud 2019-08-26 7.5
Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, it is possible to execute arbitrary code on a target machine with 'Hybris' user rights, resulting in Code Injection.
CVE-2019-0343 1 Sap 1 Commerce Cloud 2019-08-23 6.5
SAP Commerce Cloud (Mediaconversion Extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could...
CVE-2019-0322 1 Sap 1 Commerce Cloud 2019-07-18 5.0
SAP Commerce Cloud (previously known as SAP Hybris Commerce), (HY_COM, versions 6.3, 6.4, 6.5, 6.6, 6.7, 1808, 1811), allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.