Beware! Weak Access Controls in SAP Commerce Cloud Could Let Locked Users Regain Access

CVECVE-2023-42481
CVSScvssV3_1: 8.1
SourceCVE-2023-42481

SAP Commerce Cloud is an e-commerce platform used by many businesses to power their online stores. Unfortunately, versions 1905 through 2205 of this software contain a vulnerability that could allow locked-out users to regain access.

The issue stems from weak access controls in how forgotten password requests are handled. If a user’s account gets locked due to multiple failed login attempts, they can exploit this forgotten password process to essentially un-lock themselves.

By submitting a forgotten password request, the locked user is able to circumvent the block on their account. Once their password is reset, they can log back in without any additional verification. This poses a security risk as malicious or compromised accounts could regain access.

The CVSS score for this vulnerability is 8.1 out of 10, indicating it is relatively serious. An attacker could exploit it to view or modify private customer data they shouldn’t have access to anymore. This impacts the confidentiality and integrity of the e-commerce system.

If you use SAP Commerce Cloud, be sure to update to the latest version right away. Also consider strengthening password reset procedures to require additional identity verification for locked accounts. Staying on top of patches is key to protecting your online store and customer data from unauthorized access.

References