/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
According to https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37714 (or https://nvd.nist.gov/vuln/detail/CVE-2021-37714), Jsoup version <1.14.2 (prior to ver. 1.14.2) library used in SAP Commerce to parse untrusted HTML or XML may be vulnerable to DOS attacks.
Read more...
Environment
SAP Commerce onPrem solutions
SAP Commerce Cloud solutions
Product
SAP Commerce 1811 ; SAP Commerce 1905 ; SAP Commerce 2005 ; SAP Commerce 2011 ; SAP Commerce 2105 ; SAP Hybris Commerce 1808
Keywords
CVE-2021-37714, jsoup , KBA , CEC-SCC-PLA , Platform , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)