SAP Commerce Hycom
By the Year
In 2024 there have been 0 vulnerabilities in SAP Commerce Hycom . Last year Commerce Hycom had 2 security vulnerabilities published. Right now, Commerce Hycom is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 2 | 8.65 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Commerce Hycom vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent SAP Commerce Hycom Security Vulnerabilities
SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication
CVE-2023-39439
9.8 - Critical
- August 08, 2023
SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.
1390
Under certain conditions SAP Commerce (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211, endpoints
CVE-2023-37486
7.5 - High
- August 08, 2023
Under certain conditions SAP Commerce (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211, endpoints allow an attacker to access information which would otherwise be restricted. On successful exploitation there could be a high impact on confidentiality with no impact on integrity and availability of the application.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for SAP Commerce Hycom or by SAP? Click the Watch button to subscribe.
