Description
In SAP Commerce Cloud - versions HY_COM 1905, HY_COM 2005, HY_COM2105, HY_COM 2011, HY_COM 2205, COM_CLOUD 2211, a locked B2B user can misuse the forgotten password functionality to un-block his user account again and re-gain access if SAP Commerce Cloud - Composable Storefront is used as storefront, due to weak access controls in place. This leads to a considerable impact on confidentiality and integrity.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Affected products
- SAP_SE / SAP Commerce CloudHY_COM 1905 – HY_COM 1905
- SAP_SE / SAP Commerce CloudHY_COM 2005 – HY_COM 2005
- SAP_SE / SAP Commerce CloudHY_COM2105 – HY_COM2105
- SAP_SE / SAP Commerce CloudHY_COM 2011 – HY_COM 2011
- SAP_SE / SAP Commerce CloudHY_COM 2205 – HY_COM 2205
- SAP_SE / SAP Commerce CloudCOM_CLOUD 2211 – COM_CLOUD 2211