[Adobe Cloud] RCE through frontend gift registry sharing

Stammdaten

Kritikalität
CVE ID
CVE-2024-20758
Aktualisiert am:
2024-04-10T11:49:04.024Z
Veröffentlicht am:
2024-04-10T11:49:04.024Z
 

Betroffene Produkte

Hersteller:
Adobe
Produkt(e):
Adobe Commerce
Betroffene Version:
0
 

Beschreibung

Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but the attack complexity is high.
 

Referenzen

 

NIST-Link:


Copyright © 2024 · All Rights Reserved · https://www.tecxero.com | Impressum