SAP Security Advisory version HY_COM 2105 - SAP Security Notes

 

Advisories for HY_COM 2105

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3202523 CEC-COM-CPS Cross-Site Scripting (XSS) vulnerability in SAP Commerce 6.1 Medium 2022-10 2022/10/11 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3142773 CEC-COM-CPS-WEB [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP Commerce 10.0 Hot News 2022-02 2022/02/08 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
3155609 CEC-COM-CPS Privilege escalation vulnerability in Apache Tomcat server component of SAP Commerce 7.0 High 2022-04 2022/04/12 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
3394567 CEC-COM-CPS [CVE-2023-42481] Improper Access Control vulnerability in SAP Commerce Cloud 8.1 High 2023-12 2023/12/12 Program error SAP Commerce COM_CLOUD 2211 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3114134 CEC-COM-CPS-COR [CVE-2021-42064] SQL Injection vulnerability in SAP Commerce 8.8 High 2021-12 2021/12/14 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
3248255 CEC-COM-CPS [CVE-2022-41266] Cross-Site Scripting (XSS) vulnerability in SAP Commerce 8.0 High 2022-12 2022/12/13 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3271523 CEC-COM-CPS-COR Remote Code Execution vulnerability associated with Apache Commons Text in SAP Commerce 9.8 Hot News 2022-12 2022/12/13 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3320145 CEC-COM-CPS-OTH Denial of service (DOS) in SAP Commerce 7.5 High 2023-05 2023/05/09 Program error SAP Commerce COM_CLOUD 2211 HY_COM 2105 HY_COM 2205
3321309 CEC-COM-CPS-OTH Information Disclosure vulnerability in SAP Commerce (Backoffice) 7.5 High 2023-05 2023/05/09 Program error SAP Commerce HY_COM 2105 HY_COM 2205
3171258 CEC-COM-CPS-WEB [CVE-2022-22965] Remote Code Execution vulnerability associated with Spring Framework used in SAP Commerce 9.8 Hot News 2022-04 2022/04/18 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
3341934 CEC-SCC-COM-BC-OCC [CVE-2023-37486] Information Disclosure vulnerability in SAP Commerce (OCC API) 5.9 Medium 2023-08 2023/08/08 Program error SAP Commerce Cloud COM_CLOUD 2211 HY_COM 2105 HY_COM 2205
3346500 CEC-SCC-PLA-PL [CVE-2023-39439] Improper authentication in SAP Commerce Cloud 8.8 High 2023-08 2023/08/08 Program error SAP Commerce Cloud COM_CLOUD 2211 HY_COM 2105 HY_COM 2205
3459935 CEC-COM-CPS-COR [CVE-2024-33003] Information Disclosure Vulnerability in SAP Commerce Cloud 7.4 High 2024-09 2024/08/13 Program error SAP Commerce Cloud COM_CLOUD 2211 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205
3113593 CEC-COM-CPS-COR Denial of service (DOS) in SAP Commerce 7.5 High 2021-12 2021/12/14 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105
3110328 CEC-COM-CPS-WEB [CVE-2021-40502] Missing Authorization check in SAP Commerce 8.3 High 2021-11 2021/11/09 Program error SAP Commerce HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge
Platform
Product

© Copyright 2024 by SecurityBridge GmbH

v35.0