THREATOPS
THREAT OPSCVEs › CVE-2019-0344

CVE-2019-0344 — SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability

CISA KEVExploited: confirmedSAP

SAP Commerce Cloud (formerly known as Hybris) contains a deserialization of untrusted data vulnerability within the mediaconversion and virtualjdbc extension that allows for code injection.

Vulnerability details