CVE-2025-24875 | SAP Commerce COM_CLOUD 2211/HY_COM 2205 Setting cross-site request forgery

Inserito da Angelo Barbosa | Feb 11, 2025 | CVE

A vulnerability was found in SAP Commerce COM_CLOUD 2211/HY_COM 2205. It has been rated as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross-site request forgery.

The identification of this vulnerability is CVE-2025-24875. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-24875 | SAP Commerce COM_CLOUD 2211/HY_COM 2205 Setting cross-site request forgery

Post correlati

CVE-2024-57989 | Linux Kernel up to 6.12.12/6.13.1 mt76 mt7925_change_vif_links null pointer dereference

CVE-2024-28183 | Espressif ESP-IDF up to 4.4.6/5.0.6/5.1.3/5.2.0 Anti-Rollback Protection toctou (GHSA-22×6-3756-pfp8)

CVE-2023-7209 | Uniway Router up to 2.0 Device Reset device_reset.cgi denial of service

CVE-2024-41011 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 amdkfd Privilege Escalation