SAP (Commerce Cloud) Data Breach
SAP (Commerce Cloud) experienced a data breach that was reported on September 30, 2024. SAP Commerce Cloud (formerly known as Hybris) contains a deserialization of untrusted data vulnerability within the mediaconversion and virtualjdbc extension that allows for code injection.
Key Facts
- Organization
- SAP (Commerce Cloud)
- Date Reported
- September 30, 2024
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.