Lucene search
+L

8 matches found

VulnCheck KEV
VulnCheck KEV
added 2024/09/30 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-0344

SAP Commerce Cloud formerly known as Hybris contains a deserialization of untrusted data vulnerability within the mediaconversion and virtualjdbc extension that allows for code injection...

9.8CVSS6.3AI score0.07079EPSS
Exploits0References1
CISA KEV Catalog
CISA KEV Catalog
added 2024/09/30 12:0 a.m.83 views

SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability

SAP Commerce Cloud formerly known as Hybris contains a deserialization of untrusted data vulnerability within the mediaconversion and virtualjdbc extension that allows for code injection...

9.8CVSS7.5AI score0.07079EPSS
In wildExploits0
BDU FSTEC
BDU FSTEC
added 2019/12/22 12:0 a.m.6 views

The vulnerability of the Mediaconversion component of the SAP Commerce Cloud platform allows a hacker to gain full control over the application.

The vulnerability of the Mediaconversion component of the SAP Commerce Cloud platform is related to errors in code generation. Exploiting this vulnerability could allow a malicious actor to gain full control over the application...

9CVSS7.7AI score0.01482EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2019/08/14 2:15 p.m.25 views

CVE-2019-0343

SAP Commerce Cloud Mediaconversion Extension, versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application...

8.8CVSS8.7AI score0.01482EPSS
Exploits0References2
OSV
OSV
added 2019/08/14 2:15 p.m.4 views

CVE-2019-0343

SAP Commerce Cloud Mediaconversion Extension, versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application...

8.8CVSS5.8AI score0.01482EPSS
Exploits0References2
Prion
Prion
added 2019/08/14 2:15 p.m.16 views

Code injection

SAP Commerce Cloud Mediaconversion Extension, versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application...

6.5CVSS8.6AI score0.01482EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/14 1:53 p.m.62 views

CVE-2019-0343

CVE-2019-0343 affects SAP Commerce Cloud (Mediaconversion Extension) versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905. The vulnerability arises from an authenticated Backoffice/HMC user being able to inject code that is executed by the application, enabling Code Injection and allowing an attacker to...

8.8CVSS8.6AI score0.01482EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/14 1:53 p.m.26 views

CVE-2019-0343

SAP Commerce Cloud Mediaconversion Extension, versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application...

8.7AI score0.01482EPSS
Exploits0References2
Rows per page
Query Builder