A vulnerability was found in SAP Commerce Cloud COM_CLOUD 2211 up to HY_COM2105. It has been classified as critical. This affects an unknown part of the component B2B User Handler. The manipulation leads to weak password recovery.
This vulnerability is uniquely identified as CVE-2023-42481. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.