SAP Security Advisory version HY_COM 1905 - SAP Security Notes

 

Advisories for HY_COM 1905

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3202523 CEC-COM-CPS Cross-Site Scripting (XSS) vulnerability in SAP Commerce 6.1 Medium 2022-10 2022/10/11 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3142773 CEC-COM-CPS-WEB [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP Commerce 10.0 Hot News 2022-02 2022/02/08 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
3155609 CEC-COM-CPS Privilege escalation vulnerability in Apache Tomcat server component of SAP Commerce 7.0 High 2022-04 2022/04/12 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
3394567 CEC-COM-CPS [CVE-2023-42481] Improper Access Control vulnerability in SAP Commerce Cloud 8.1 High 2023-12 2023/12/12 Program error SAP Commerce COM_CLOUD 2211 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3114134 CEC-COM-CPS-COR [CVE-2021-42064] SQL Injection vulnerability in SAP Commerce 8.8 High 2021-12 2021/12/14 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
3316509 CEC-COM-CPS-COR Remote Code Execution vulnerability in SAP Commerce 4.7 Medium 2023-04 2023/04/11 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011
2876813 CEC-COM-CPS-WEB [CVE-2020-6201] Cross-Site Scripting (XSS) vulnerability in SAP Commerce Cloud (testweb extension) 6.1 Medium 2020-03 2020/03/10 Program error SAP Commerce Cloud HY_COM 6.6 HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905
3248255 CEC-COM-CPS [CVE-2022-41266] Cross-Site Scripting (XSS) vulnerability in SAP Commerce 8.0 High 2022-12 2022/12/13 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3271523 CEC-COM-CPS-COR Remote Code Execution vulnerability associated with Apache Commons Text in SAP Commerce 9.8 Hot News 2022-12 2022/12/13 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
2888556 CEC-COM-CPS-WEB [CVE-2020-6232] Missing Authorization check in SAP Commerce 5.3 Medium 2020-04 2020/04/14 Program error SAP Commerce Cloud HY_COM 1811 HY_COM 1905
2904480 CEC-COM-CPS [CVE-2020-6238] Missing XML Validation vulnerability in SAP Commerce 9.3 Hot News 2020-04 2020/04/14 Program error SAP Commerce Cloud HY_COM 6.6 HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905
2906366 CEC-COM-CPS [CVE-2020-6264] Information Disclosure in SAP Commerce 8.6 High 2020-06 2020/06/09 Program error SAP Cloud Commerce HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905
3171258 CEC-COM-CPS-WEB [CVE-2022-22965] Remote Code Execution vulnerability associated with Spring Framework used in SAP Commerce 9.8 Hot News 2022-04 2022/04/18 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
2948317 CEC-COM-CPS Vulnerabilities in open source libraries used in SAP Commerce 6.1 Medium 2020-08 2020/08/11 Program error SAP Commerce HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
2965287 CEC-COM-CPS [CVE-2020-6363] Insufficient Session Expiration in SAP Commerce Cloud 3.7 Low 2020-10 2020/10/13 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
2984034 CEC-HCS-SEC [CVE-2021-21445] Header Manipulation vulnerability in SAP Commerce Cloud 5.4 Medium 2021-01 2021/01/12 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011
3459935 CEC-COM-CPS-COR [CVE-2024-33003] Information Disclosure Vulnerability in SAP Commerce Cloud 7.4 High 2024-09 2024/08/13 Program error SAP Commerce Cloud COM_CLOUD 2211 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
2975189 CEC-COM-CPS [CVE-2020-26809] Information Disclosure in SAP Commerce Cloud 7.5 High 2020-11 2020/11/10 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
3014121 CEC-COM-CPS-CKP [CVE-2021-21477] Remote Code Execution vulnerability in SAP Commerce 9.9 Hot News 2021-02 2021/02/09 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011
3040210 CEC-COM-CPS-CKP [CVE-2021-27602] Remote Code Execution vulnerability in Source Rules of SAP Commerce 9.9 Hot News 2021-04 2021/04/13 Program error SAP Commerce / SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011
3113593 CEC-COM-CPS-COR Denial of service (DOS) in SAP Commerce 7.5 High 2021-12 2021/12/14 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
3039818 CEC-COM-CPS [CVE-2021-27619] Information Disclosure in SAP Commerce (Backoffice search) 6.5 Medium 2021-05 2021/05/11 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011
3110328 CEC-COM-CPS-WEB [CVE-2021-40502] Missing Authorization check in SAP Commerce 8.3 High 2021-11 2021/11/09 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
2934451 CEC-COM-CPS [CVE-2020-6302] Session Fixation in SAP Commerce 6.4 Medium 2020-09 2020/09/08 Program error SAP Commerce Cloud HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
2917381 CEC-COM-CPS-WEB [CVE-2020-6272] Cross-Site Scripting (XSS) vulnerability in SAP Commerce Cloud 5.4 Medium 2020-10 2020/10/13 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
2975170 CEC-COM-CPS [CVE-2020-26810] Multiple Vulnerabilities in SAP Commerce Cloud (Accelerator Payment Mock) 7.5 High 2020-11 2020/11/10 Program error SAP Commerce Cloud HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge
Platform
Product

© Copyright 2024 by SecurityBridge GmbH

v35.0