CVE-2019-0322

Summary

SAP Commerce Cloud (previously known as SAP Hybris Commerce), (HY_COM, versions 6.3, 6.4, 6.5, 6.6, 6.7, 1808, 1811), allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 6.3affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 6.4affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 6.5affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 6.6affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 6.7affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 1808affected
SAP SESAP Commerce Cloud (ex SAP Hybris Commerce) (HY_COM)< 1811affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References