CVE-2019-0344

CVSS 9.8 CRITICALEPSS 7.1%● KEVCWE-502

In short

SAP Commerce Cloud's virtualjdbc extension unsafely processes untrusted data, allowing attackers to run malicious code on the server. This is a critical flaw because it gives attackers full control over the system with application-level privileges.

Technical detail

The virtualjdbc extension in SAP Commerce Cloud (versions 6.4–1905) deserializes untrusted input without proper validation, enabling remote code execution under the Hybris application user context. An attacker can inject arbitrary code by crafting malicious serialized objects, bypassing authentication if the deserialization endpoint is exposed.

Summary generated and translated by AI from the official description.

Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc extension), versions 6.4, 6.5, 6.6, 6.7, 1808, 1811, 1905, it is possible to execute arbitrary code on a target machine with 'Hybris' user rights, resulting in Code Injection.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

SAP SE · SAP Commerce Cloud (virtualjdbc extension)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://launchpad.support.sap.com/#/notes/2786035 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0344