Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required and scope is changed.
Metrics
Affected Vendors & Products
References
History
Wed, 07 Aug 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, but admin privileges are required and scope is changed. |
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2024-06-13T09:04:55.355Z
Updated: 2024-08-07T14:47:37.071Z
Reserved: 2024-04-30T19:50:50.902Z
Link: CVE-2024-34108
Vulnrichment
Updated: 2024-08-02T02:42:59.883Z
NVD
Status : Modified
Published: 2024-06-13T09:15:12.447
Modified: 2024-08-07T15:15:54.400
Link: CVE-2024-34108
Redhat
No data.