Vulnerabilities > Empty Password in Configuration File

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-39439 Empty Password in Configuration File vulnerability in SAP Commerce Cloud and Commerce Hycom
SAP Commerce Cloud may accept an empty passphrase for user ID and passphrase authentication, allowing users to log into the system without a passphrase.
network
low complexity
sap CWE-258
critical
9.8