CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)

Inserito da Angelo Barbosa | Nov 12, 2024 | CVE

A vulnerability has been found in Adobe Commerce up to 3.2.5 and classified as critical. This vulnerability affects unknown code of the component Requests Handler. The manipulation leads to server-side request forgery.

This vulnerability was named CVE-2024-49521. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)

Post correlati

Kyocera TASKalfa 4053ci Incomplete Fix CVE-2020-23575 wlmdeu%2f%2e%2e%2f%2e%2e path traversal

CVE-2024-28255 | open-metadata OpenMetadata up to 1.2.3 /api/v1 getUserPrincipal improper authentication

CVE-2024-31844 | Italtel Embrace 1.6.4 path traversal

CVE-2024-1062 | 389-ds-base log_entry_attr heap-based overflow