-
-
Notifications
View All[Action required] SAP Security out-of-bound patch - 22 July 2025
SAP out-of-bound Patch released 2025/07/22 | Advisory |[Action required] SAP Security Patch Day - July 2025
SAP Patches released on SAP Security Patch Day - July 8 2025 2025/07/08 | Advisory |[Action required] SAP Security Patch Day - June 2025
SAP Patches released on SAP Security Patch Day - June 10 2025 2025/06/10 | Advisory |[Action required] SAP Security Patch Day - May 2025
SAP Patches released on SAP Security Patch Day - May 13 2025 2025/05/13 | Advisory |[Action required] SAP Security out-of-bound patch - 25 April 2025
SAP out-of-bound Patch released 2025/04/25 | Advisory |[Action required] SAP Security Patch Day - April 2025
SAP Patches released on SAP Security Patch Day - April 8 2025 2025/04/08 | Advisory |Stable version 6.34
A new Stable version 6.34.1 now available for download and installation – You are welcome to try it out! 2025/04/03 | Release notes |[Action required] SAP Security Patch Day - March 2025
SAP Patches released on SAP Security Patch Day - March 11 2025 2025/03/11 | Advisory |[Action required] SAP Security Patch Day - February 2025
SAP Patches released on SAP Security Patch Day - February 11 2025 2025/02/11 | Advisory |[Action required] SAP Security Patch Day - January 2025
SAP Patches released on SAP Security Patch Day - January 14 2025 2025/01/14 | Advisory |[Action required] SAP Security Patch Day - December 2024
SAP Patches released on SAP Security Patch Day - December 10 2024 2024/12/10 | Advisory |[Action required] SAP Security out-of-bound patch - 26 November 2024
SAP out-of-bound Patch released 2024/11/26 | Advisory |[Action required] SAP Security Patch Day - November 2024
SAP Patches released on SAP Security Patch Day - November 12 2024 2024/11/12 | Advisory |SecurityBridge Cloud connectivity
Please ensure to use API key for SecurityBridge Cloud connectivity! 2024/10/14 | News |[Action required] SAP Security Patch Day - October 2024
SAP Patches released on SAP Security Patch Day - October 10 2024 2024/10/08 | Advisory |Stable version 6.30
A new Stable version 6.30.1 now available for download and installation – You are welcome to try it out! 2024/10/03 | Release notes |[Action required] SAP Security Patch Day - September 2024
SAP Patches released on SAP Security Patch Day - September 10 2024 2024/09/10 | Advisory |[Action required] SAP Security Patch Day - August 2024
SAP Patches released on SAP Security Patch Day - August 13 2024 2024/08/13 | Advisory |[Action required] SAP Security Patch Day - July 2024
SAP Patches released on SAP Security Patch Day - July 09 2024 2024/07/09 | Advisory |[Action required] SAP Security Patch Day - June 2024
SAP Patches released on SAP Security Patch Day - June 11 2024 2024/06/11 | Advisory |[Action required] SAP Security Patch Day - May 2024
SAP Patches released on SAP Security Patch Day - May 14 2024 2024/05/14 | Advisory |[Action required] SAP Security Patch Day - April 2024
SAP Patches released on SAP Security Patch Day - April 9 2024 2024/04/09 | Advisory |[Action required] SAP Security Patch Day - March 2024
SAP Patches released on SAP Security Patch Day - March 12 2024 2024/03/12 | Advisory |[Action required] SAP Security Patch Day - February 2024
SAP Patches released on SAP Security Patch Day - February 13 2024 2024/02/13 | Advisory |[Action required] SAP Security Patch Day - January 2024
SAP Patches released on SAP Security Patch Day - January 9 2024 2024/01/09 | Advisory |[Action required] SAP Security Patch Day - December 2023
SAP Patches released on SAP Security Patch Day - December 12 2023 2023/12/12 | Advisory |[Action required] SAP Security Patch Day - November 2023
SAP Patches release on SAP Security Patch Day of November on 14th 2023 2023/11/14 | Advisory |[Action required] SAP Security Patch Day - October 2023
SAP Patches release on SAP Security Patch Day of October on 10th 2023 2023/10/10 | Advisory |[Action required] SAP Security Patch Day - September 2023
SAP Patches release on SAP Security Patch Day of September on 12th 2023 2023/09/12 | Advisory |[Action required] SAP Security Patch Day - August 2023
SAP Patches release on SAP Security Patch Day of August on 8th 2023 2023/08/08 | Advisory |[Action required] SAP Security Patch Day - July 2023
SAP Patches release on SAP Security Patch Day of July on 11th 2023 2023/07/11 | Advisory |[Action required] SAP Security Patch Day - June 2023
SAP Patches release on SAP Security Patch Day of June on 13th 2023 2023/06/13 | Advisory |[Action required] SAP Security Patch Day - May 2023
SAP Patches release on SAP Security Patch Day of May on 9th 2023 2023/05/09 | Advisory |[Action required] SAP Security Patch Day - April 2023
SAP Patches release on SAP Security Patch Day of April on 11th 2023 2023/04/11 | Advisory |[Action required] SAP Security Patch Day - March 2023
SAP Patches release on SAP Security Patch Day of March on 14th 2023 2023/03/14 | Advisory |[Action required] SAP Security Patch Day - February 2023
SAP Patches release on SAP Security Patch Day of February on 14th 2023 2023/02/14 | Advisory |[Action required] SAP Security Patch Day - January 2023
HotNews Patches release on SAP Security Patch Day of January on 10th 2023 2023/01/10 | Advisory |[Action required] SAP Security Patch Day - December 2022
SAP Security Patch Day of December the 13th 2022 has been provided. 2022/12/13 | Advisory |[Action required] SAP Security Patch Day - September 2022
[Action required] SAP Security Patch Day of September the 13th has been provided 2022/09/13 | Advisory |[Solution available] App not loading
SAP has removed CDN library version used by SecurityBridge App, caused white screen. 2022/08/11 | News |[Action required] SAP Security Patch Day - August 2022
[Action required] SAP Security Patch Day of August the 7th has been provided 2022/07/14 | Advisory |[Action required] SAP Security Patch Day - July 2022
[Action required] SAP Security Patch Day of July the 5th has been provided 2022/07/14 | Advisory |Security Advisory for April 2022
Today we have released the Security Advisories for SAP and the month of April 2022 2022/03/07 | Advisory |Security Advisory for March 2022
Today we have released the Security Advisories for SAP and the month of March 2022 2022/03/07 | Advisory |Security Advisory for February 2022
Today we have released the Security Advisories for SAP and the month of February 2022 2022/02/18 | Advisory |Security Advisory for January 2022
Today we have released the Security Advisories for SAP and the month of January 2022 2022/01/07 | Advisory |Security Advisory for December 2021
Today we have released the Security Advisories for SAP and the month of December 2021 2021/12/27 | Advisory |GUIDANCE FOR PREVENTING, DETECTING, AND HUNTING FOR CVE-2021-44228 LOG4J 2 EXPLOITATION IN SAP SYSTEMS
Apache Log4j2 2.14.1 and below are susceptible to a remote code execution (RCE) vulnerability. 2021/12/01 | News |Security Advisory for October 2021
Today we have released the Security Advisories for SAP and the month of October 2021 2021/10/03 | Advisory |Security Advisory for September 2021
Today we have released the Security Advisories for SAP and the month of September 2021 2021/09/27 | Advisory |Security Advisory for July 2021
Today we have released the Security Advisories for SAP and the month of July 2021 2021/08/09 | Advisory |Security Advisory for June 2021
Today we have released the Security Advisories for SAP and the month of June 2021 2021/08/09 | Advisory |Security Advisory for May 2021
Today we have released the Security Advisories for SAP and the month of May 2021 2021/04/07 | Advisory |Security Advisory for April 2021
Today we have released the Security Advisories for SAP and the month of April 2021 2021/04/07 | Advisory |Security Advisory for February 2021
Today we have released the Security Advisories for SAP and the month of February 2021 2021/02/04 | Advisory |Security Advisory for January 2021
Today we have released the Security Advisories for SAP and the month of January 2021 2021/02/04 | Advisory |Security Advisory for December 2020
Today we have released the Security Advisories for the month of December 2020 2021/01/13 | Advisory |Security Advisory for November 2020
Today we have released the Security Advisories for the month of November 2020 2020/11/24 | Advisory |Start your journey on the road to securing SAP
A new whitepaper has been published describing the important milestones and steps on your road to secure SAP. 2020/11/24 | Advisory |
Advisories for HY_COM 1905
Below you can find all Security Advisories that related to your search term.
| Note | Component | Description | CVSS | Severity | Patchday | Initially released on | Category | Affected system type | Valid for |
|---|---|---|---|---|---|---|---|---|---|
| 3459935 | CEC-COM-CPS-COR | [CVE-2024-33003] Information Disclosure Vulnerability in SAP Commerce Cloud | 7.4 | High | 2024-09 | 2024/08/13 | Program error | SAP Commerce Cloud | COM_CLOUD 2211 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205 |
| 3394567 | CEC-COM-CPS | [CVE-2023-42481] Improper Access Control vulnerability in SAP Commerce Cloud | 8.1 | High | 2023-12 | 2023/12/12 | Program error | SAP Commerce | COM_CLOUD 2211 HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205 |
| 3316509 | CEC-COM-CPS-COR | Remote Code Execution vulnerability in SAP Commerce | 4.7 | Medium | 2023-04 | 2023/04/11 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 |
| 3271523 | CEC-COM-CPS-COR | Remote Code Execution vulnerability associated with Apache Commons Text in SAP Commerce | 9.8 | Hot News | 2022-12 | 2022/12/13 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205 |
| 3248255 | CEC-COM-CPS | [CVE-2022-41266] Cross-Site Scripting (XSS) vulnerability in SAP Commerce | 8.0 | High | 2022-12 | 2022/12/13 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205 |
| 3202523 | CEC-COM-CPS | Cross-Site Scripting (XSS) vulnerability in SAP Commerce | 6.1 | Medium | 2022-10 | 2022/10/11 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 HY_COM 2205 |
| 3171258 | CEC-COM-CPS-WEB | [CVE-2022-22965] Remote Code Execution vulnerability associated with Spring Framework used in SAP Commerce | 9.8 | Hot News | 2022-04 | 2022/04/18 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 |
| 3155609 | CEC-COM-CPS | Privilege escalation vulnerability in Apache Tomcat server component of SAP Commerce | 7.0 | High | 2022-04 | 2022/04/12 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 |
| 3142773 | CEC-COM-CPS-WEB | [CVE-2021-44228] Remote Code Execution vulnerability associated with Apache Log4j 2 component used in SAP Commerce | 10.0 | Hot News | 2022-02 | 2022/02/08 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011 |
| 3114134 | CEC-COM-CPS-COR | [CVE-2021-42064] SQL Injection vulnerability in SAP Commerce | 8.8 | High | 2021-12 | 2021/12/14 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011 |
| 3113593 | CEC-COM-CPS-COR | Denial of service (DOS) in SAP Commerce | 7.5 | High | 2021-12 | 2021/12/14 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2011 HY_COM 2105 |
| 3110328 | CEC-COM-CPS-WEB | [CVE-2021-40502] Missing Authorization check in SAP Commerce | 8.3 | High | 2021-11 | 2021/11/09 | Program error | SAP Commerce | HY_COM 1905 HY_COM 2005 HY_COM 2105 HY_COM 2011 |
| 3040210 | CEC-COM-CPS-CKP | [CVE-2021-27602] Remote Code Execution vulnerability in Source Rules of SAP Commerce | 9.9 | Hot News | 2021-04 | 2021/04/13 | Program error | SAP Commerce / SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 |
| 3039818 | CEC-COM-CPS | [CVE-2021-27619] Information Disclosure in SAP Commerce (Backoffice search) | 6.5 | Medium | 2021-05 | 2021/05/11 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 |
| 3014121 | CEC-COM-CPS-CKP | [CVE-2021-21477] Remote Code Execution vulnerability in SAP Commerce | 9.9 | Hot News | 2021-02 | 2021/02/09 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 |
| 2984034 | CEC-HCS-SEC | [CVE-2021-21445] Header Manipulation vulnerability in SAP Commerce Cloud | 5.4 | Medium | 2021-01 | 2021/01/12 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 HY_COM 2011 |
| 2975189 | CEC-COM-CPS | [CVE-2020-26809] Information Disclosure in SAP Commerce Cloud | 7.5 | High | 2020-11 | 2020/11/10 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2975170 | CEC-COM-CPS | [CVE-2020-26810] Multiple Vulnerabilities in SAP Commerce Cloud (Accelerator Payment Mock) | 7.5 | High | 2020-11 | 2020/11/10 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2965287 | CEC-COM-CPS | [CVE-2020-6363] Insufficient Session Expiration in SAP Commerce Cloud | 3.7 | Low | 2020-10 | 2020/10/13 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2948317 | CEC-COM-CPS | Vulnerabilities in open source libraries used in SAP Commerce | 6.1 | Medium | 2020-08 | 2020/08/11 | Program error | SAP Commerce | HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2934451 | CEC-COM-CPS | [CVE-2020-6302] Session Fixation in SAP Commerce | 6.4 | Medium | 2020-09 | 2020/09/08 | Program error | SAP Commerce Cloud | HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2917381 | CEC-COM-CPS-WEB | [CVE-2020-6272] Cross-Site Scripting (XSS) vulnerability in SAP Commerce Cloud | 5.4 | Medium | 2020-10 | 2020/10/13 | Program error | SAP Commerce Cloud | HY_COM 1808 HY_COM 1811 HY_COM 1905 HY_COM 2005 |
| 2906366 | CEC-COM-CPS | [CVE-2020-6264] Information Disclosure in SAP Commerce | 8.6 | High | 2020-06 | 2020/06/09 | Program error | SAP Cloud Commerce | HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 |
| 2904480 | CEC-COM-CPS | [CVE-2020-6238] Missing XML Validation vulnerability in SAP Commerce | 9.3 | Hot News | 2020-04 | 2020/04/14 | Program error | SAP Commerce Cloud | HY_COM 6.6 HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 |
| 2888556 | CEC-COM-CPS-WEB | [CVE-2020-6232] Missing Authorization check in SAP Commerce | 5.3 | Medium | 2020-04 | 2020/04/14 | Program error | SAP Commerce Cloud | HY_COM 1811 HY_COM 1905 |
| 2876813 | CEC-COM-CPS-WEB | [CVE-2020-6201] Cross-Site Scripting (XSS) vulnerability in SAP Commerce Cloud (testweb extension) | 6.1 | Medium | 2020-03 | 2020/03/10 | Program error | SAP Commerce Cloud | HY_COM 6.6 HY_COM 6.7 HY_COM 1808 HY_COM 1811 HY_COM 1905 |