VYPR
Unrated severityNVD Advisory· Published Aug 14, 2019· Updated Aug 4, 2024

CVE-2019-0343

CVE-2019-0343

Description

SAP Commerce Cloud (Mediaconversion Extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, allows an authenticated Backoffice/HMC user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application.

Affected products

2
  • Range: >=6.4, <=1905
  • SAP SE/SAP Commerce Cloud (Mediaconversion Extension)v5
    Range: < 6.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.