Lucene search
SapCVELIST:CVE-2019-0344HistoryAug 14, 2019 - 1:53 p.m.
CVE-2019-0344
2019-08-1413:53:21
sap
www.cve.org
2
Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, it is possible to execute arbitrary code on a target machine with βHybrisβ user rights, resulting in Code Injection.
CNA Affected
[
{
"product": "SAP Commerce Cloud (virtualjdbc extension)",
"vendor": "SAP SE",
"versions": [
{
"status": "affected",
"version": "< 6.4"
},
{
"status": "affected",
"version": "< 6.5"
},
{
"status": "affected",
"version": "< 6.6"
},
{
"status": "affected",
"version": "< 6.7"
},
{
"status": "affected",
"version": "< 1808"
},
{
"status": "affected",
"version": "< 1811"
},
{
"status": "affected",
"version": "< 1905"
}
]
}
]Related
nvd
nvd
CVE-2019-0344
2019-08-14 14:15:16
prion
prion
Code injection
2019-08-14 14:15:00
cve
cve
CVE-2019-0344
2019-08-14 14:15:16