A vulnerability, which was classified as problematic, has been found in SAP Commerce Cloud. Affected by this issue is some unknown functionality of the component Sample Configuration. Performing a manipulation results in information disclosure. This vulnerability is known as CVE-2026-44761. Remote exploitation of the attack is possible.
| Vendor | Product | Versions |
|---|---|---|
| sap | sap commerce cloud | HY_COM 2205, COM_CLOUD 2211, 2211-JDK21 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| sap | sap software | cert_advisory | 90% |
Updated description with new details about the vulnerability and marked it as actively exploited.
Initial creation