CVE advisoryKnown Exploit
CVE-2019-0344
SAP Commerce Cloud Code Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
SAP Commerce Cloud is affected by a code injection vulnerability due to unsafe deserialization in the virtualjdbc extension. This allows attackers to execute arbitrary code on target systems, posing a business risk of unauthorized access and system compromise.