Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required and scope is changed.
History

Wed, 07 Aug 2024 15:00:00 +0000

Type Values Removed Values Added
Description Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required and scope is changed.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2024-06-13T09:04:55.355Z

Updated: 2024-08-07T14:47:37.071Z

Reserved: 2024-04-30T19:50:50.902Z

Link: CVE-2024-34108

cve-icon Vulnrichment

Updated: 2024-08-02T02:42:59.883Z

cve-icon NVD

Status : Modified

Published: 2024-06-13T09:15:12.447

Modified: 2024-08-07T15:15:54.400

Link: CVE-2024-34108

cve-icon Redhat

No data.