CyberSec.Space Logo
Back to CVE Browser

CVE-2019-0322

HIGH
7.5
CVSS Severity Score
EPSS Score0.0180%
EPSS Percentile0.92th
PublishedJul 10, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

SAP Commerce Cloud (previously known as SAP Hybris Commerce), (HY_COM, versions 6.3, 6.4, 6.5, 6.6, 6.7, 1808, 1811), allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Affected Platforms (CPE)

πŸ“¦
Sap

Commerce Cloud

= 6.3
πŸ“¦
Sap

Commerce Cloud

= 6.4
πŸ“¦
Sap

Commerce Cloud

= 6.5
πŸ“¦
Sap

Commerce Cloud

= 6.6
πŸ“¦
Sap

Commerce Cloud

= 6.7
πŸ“¦
Sap

Commerce Cloud

= 1808
πŸ“¦
Sap

Commerce Cloud

= 1811

References & Advisories

πŸ”— http://www.securityfocus.com/bid/109076
πŸ”— https://launchpad.support.sap.com/#/notes/2781873
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523994575
πŸ”— http://www.securityfocus.com/bid/109076
πŸ”— https://launchpad.support.sap.com/#/notes/2781873
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523994575

Related Vulnerabilities

CVE-2021-214779.9

SAP Commerce Cloud, versions - 1808,1811,1905,2005,2011, enables certain users with required privileges to edit drools rules, an a...

CVE-2019-03449.8

Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, i...

CVE-2019-03438.8

SAP Commerce Cloud (Mediaconversion Extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/...

CVE-2020-268107.5

SAP Commerce Cloud (Accelerator Payment Mock), versions - 1808, 1811, 1905, 2005, allows an unauthenticated attacker to submit a c...