Adobe

Commerce

153 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2024-45116

  • EPSS 1.88%
  • Veröffentlicht 10.10.2024 10:15:03
  • Zuletzt bearbeitet 10.10.2024 21:47:27

Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could be exploited to execute arbitrary code. If an admin attacker can trick a user into clicking a specially ...

5.4

CVE-2024-39418

  • EPSS 0.13%
  • Veröffentlicht 14.08.2024 12:15:29
  • Zuletzt bearbeitet 14.08.2024 14:32:59

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39419

  • EPSS 0.13%
  • Veröffentlicht 14.08.2024 12:15:29
  • Zuletzt bearbeitet 14.08.2024 14:25:31

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39414

  • EPSS 0.13%
  • Veröffentlicht 14.08.2024 12:15:28
  • Zuletzt bearbeitet 14.08.2024 14:39:26

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39415

  • EPSS 0.12%
  • Veröffentlicht 14.08.2024 12:15:28
  • Zuletzt bearbeitet 14.08.2024 14:34:26

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39416

  • EPSS 0.13%
  • Veröffentlicht 14.08.2024 12:15:28
  • Zuletzt bearbeitet 14.08.2024 14:34:23

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39417

  • EPSS 0.12%
  • Veröffentlicht 14.08.2024 12:15:28
  • Zuletzt bearbeitet 14.08.2024 14:33:20

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39410

  • EPSS 0.21%
  • Veröffentlicht 14.08.2024 12:15:27
  • Zuletzt bearbeitet 16.10.2024 13:34:52

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could allow an attacker to bypass security features and perform minor integrity changes on behalf of a u...

4.3

CVE-2024-39411

  • EPSS 0.12%
  • Veröffentlicht 14.08.2024 12:15:27
  • Zuletzt bearbeitet 14.08.2024 14:40:55

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...

4.3

CVE-2024-39412

  • EPSS 0.15%
  • Veröffentlicht 14.08.2024 12:15:27
  • Zuletzt bearbeitet 16.10.2024 13:33:27

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass s...