Under certain conditionsย SAP Commerceย (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211, endpoints allow an attacker to access information which would otherwise be restricted. On successful exploitation there could be a high impact on confidentiality with no impact on integrity and availability of the application.
CPE | Name | Operator | Version |
---|---|---|---|
commerce_cloud | eq | 2211 | |
commerce_hycom | eq | 2205 | |
commerce_hycom | eq | 2105 |