exploitDog

GHSA-c745-qw8j-jhvx

Опубликовано: 08 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.

SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.

Ссылки

EPSS

Процентиль: 53%

0.00303

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-1390

CWE-258

Связанные уязвимости

CVE-2023-39439

CVSS3: 8.8

nvd

больше 2 лет назад

SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.

EPSS

Процентиль: 53%

0.00303

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-1390

CWE-258