CVE-2024-45121
- EPSS 0.13%
- Veröffentlicht 10.10.2024 10:15:04
- Zuletzt bearbeitet 10.10.2024 21:37:08
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass...
CVE-2024-45115
- EPSS 0.34%
- Veröffentlicht 10.10.2024 10:15:03
- Zuletzt bearbeitet 10.10.2024 21:51:56
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could exploit this vulnerability to gain unauthorized access o...
CVE-2024-45116
- EPSS 6.35%
- Veröffentlicht 10.10.2024 10:15:03
- Zuletzt bearbeitet 10.10.2024 21:47:27
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could be exploited to execute arbitrary code. If an admin attacker can trick a user into clicking a specially ...
CVE-2024-39418
- EPSS 0.17%
- Veröffentlicht 14.08.2024 12:15:29
- Zuletzt bearbeitet 14.08.2024 14:32:59
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39419
- EPSS 0.13%
- Veröffentlicht 14.08.2024 12:15:29
- Zuletzt bearbeitet 14.08.2024 14:25:31
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39414
- EPSS 0.13%
- Veröffentlicht 14.08.2024 12:15:28
- Zuletzt bearbeitet 14.08.2024 14:39:26
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39415
- EPSS 0.12%
- Veröffentlicht 14.08.2024 12:15:28
- Zuletzt bearbeitet 14.08.2024 14:34:26
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39416
- EPSS 0.13%
- Veröffentlicht 14.08.2024 12:15:28
- Zuletzt bearbeitet 14.08.2024 14:34:23
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39417
- EPSS 0.12%
- Veröffentlicht 14.08.2024 12:15:28
- Zuletzt bearbeitet 14.08.2024 14:33:20
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...
CVE-2024-39410
- EPSS 0.28%
- Veröffentlicht 14.08.2024 12:15:27
- Zuletzt bearbeitet 16.10.2024 13:34:52
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features and perform minor integrity changes on behalf of a u...