SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.
Metrics
Affected Vendors & Products
References
History
Sat, 28 Sep 2024 22:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-1390 |
Sat, 28 Sep 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase. | SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase. |
Weaknesses | CWE-258 |
![cve-icon](/static/img/cve-icon.png)
Status: PUBLISHED
Assigner: sap
Published: 2023-08-08T00:49:01.594Z
Updated: 2024-09-28T22:08:55.861Z
Reserved: 2023-08-01T21:49:02.688Z
Link: CVE-2023-39439
![cve-icon](/static/img/cisa-icon.png)
No data.
![cve-icon](/static/img/nvd-icon.png)
Status : Modified
Published: 2023-08-08T01:15:19.793
Modified: 2024-11-21T08:15:25.790
Link: CVE-2023-39439
![cve-icon](/static/img/redhat-icon.png)
No data.