Adobe Magento Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple vulnerabilities were identified in Adobe Magento Products, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution, cross-site scripting and bypass security restriction on the targeted system.
- Cross-Site Scripting
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Magento Commerce 2 version 2.3.5-p1 and earlier
- Magento Open Source 2 version 2.3.5-p1 and earlier
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
Magento Commerce 2 2.4.0 or 2.3.5-p2
Magento Open Source 2 2.4.0 or 2.3.5-p2