CVE-2024-39405 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 improper authorization (apsb24-61)

Inserito da Angelo Barbosa | Ago 14, 2024 | CVE

A vulnerability was found in Adobe Commerce and Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1. It has been classified as critical. This affects an unknown part. The manipulation leads to improper authorization.

This vulnerability is uniquely identified as CVE-2024-39405. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39405 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 improper authorization (apsb24-61)

Post correlati

CVE-2024-25533 | RuvarOA 6.01/12.01 OfficeFileUpdate.aspx information exposure

CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure

CVE-2023-6373 | ArtPlacer Widget Plugin up to 2.20.6 on WordPress sql injection

CVE-2024-45265 | SkySystem Arfa-CMS prior 5.1.3124 Poll psid sql injection