Vulnerability CVE-2024-39417


Published: 2024-08-14

Description:
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information. Exploitation of this issue does not require user interaction.

Type:

CWE-285

(Improper Authorization)

 References:
https://helpx.adobe.com/security/products/magento/apsb24-61.html

Copyright 2025, cxsecurity.com

 

Back to Top