7.5

CVE-2019-0322

SAP Commerce Cloud (previously known as SAP Hybris Commerce), (HY_COM, versions 6.3, 6.4, 6.5, 6.6, 6.7, 1808, 1811), allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAPCommerce Cloud Version6.3
SAPCommerce Cloud Version6.4
SAPCommerce Cloud Version6.5
SAPCommerce Cloud Version6.6
SAPCommerce Cloud Version6.7
SAPCommerce Cloud Version1808
SAPCommerce Cloud Version1811
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.56% 0.83
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523994575
Vendor Advisory
http://www.securityfocus.com/bid/109076
Third Party Advisory
VDB Entry
https://launchpad.support.sap.com/#/notes/2781873
Vendor Advisory
Permissions Required