Lucene search

CVE-2024-34108

🗓️ 13 Jun 2024 09:12:15Reported by adobeType

Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier affected by Improper Input Validation vulnerability for arbitrary code execution

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
CNVD	Adobe Commerce Input Validation Error Vulnerability (CNVD-2024-28958)	14 Jun 202400:00	–	cnvd
NVD	CVE-2024-34108	13 Jun 202409:15	–	nvd
Cvelist	CVE-2024-34108 Large attack surface through legit webhook usage in Adobe Commerce	13 Jun 202409:04	–	cvelist
OSV	CVE-2024-34108	13 Jun 202409:15	–	osv
OSV	BIT-MAGENTO-2024-34108	17 Jun 202407:24	–	osv
Vulnrichment	CVE-2024-34108 Large attack surface through legit webhook usage in Adobe Commerce	13 Jun 202409:04	–	vulnrichment
Adobe	APSB24-40 : Security update available for Adobe Commerce	11 Jun 202400:00	–	adobe

Nvd

Vulners

Vulnrichment

Node

adobe commerceMatch2.3.7-

adobe commerceMatch2.3.7p1

adobe commerceMatch2.3.7p2

adobe commerceMatch2.3.7p3

adobe commerceMatch2.3.7p4

adobe commerceMatch2.3.7p4-ext1

adobe commerceMatch2.3.7p4-ext2

adobe commerceMatch2.3.7p4-ext3

adobe commerceMatch2.3.7p4-ext4

adobe commerceMatch2.4.0-

adobe commerceMatch2.4.0ext-1

adobe commerceMatch2.4.0ext-2

adobe commerceMatch2.4.0ext-3

adobe commerceMatch2.4.0ext-4

adobe commerceMatch2.4.1-

adobe commerceMatch2.4.1ext-1

adobe commerceMatch2.4.1ext-2

adobe commerceMatch2.4.1ext-3

adobe commerceMatch2.4.1ext-4

adobe commerceMatch2.4.2-

adobe commerceMatch2.4.2ext-1

adobe commerceMatch2.4.2ext-2

adobe commerceMatch2.4.2ext-3

adobe commerceMatch2.4.2ext-4

adobe commerceMatch2.4.3-

adobe commerceMatch2.4.3ext-1

adobe commerceMatch2.4.3ext-2

adobe commerceMatch2.4.3ext-3

adobe commerceMatch2.4.3ext-4

adobe commerceMatch2.4.4-

adobe commerceMatch2.4.4p1

adobe commerceMatch2.4.4p2

adobe commerceMatch2.4.4p3

adobe commerceMatch2.4.4p4

adobe commerceMatch2.4.4p5

adobe commerceMatch2.4.4p6

adobe commerceMatch2.4.5-

adobe commerceMatch2.4.5p1

adobe commerceMatch2.4.5p2

adobe commerceMatch2.4.5p3

adobe commerceMatch2.4.5p4

adobe commerceMatch2.4.5p5

adobe commerceMatch2.4.6-

adobe commerceMatch2.4.6p1

adobe commerceMatch2.4.6p2

adobe commerceMatch2.4.6p3

adobe commerce_webhooksRange1.2.0–1.4.0

adobe magentoMatch2.4.4-open_source

adobe magentoMatch2.4.4p1open_source

adobe magentoMatch2.4.4p2open_source

adobe magentoMatch2.4.4p3open_source

adobe magentoMatch2.4.4p4open_source

adobe magentoMatch2.4.4p5open_source

adobe magentoMatch2.4.4p6open_source

adobe magentoMatch2.4.4p7open_source

adobe magentoMatch2.4.4p8open_source

adobe magentoMatch2.4.5-open_source

adobe magentoMatch2.4.5p1open_source

adobe magentoMatch2.4.5p2open_source

adobe magentoMatch2.4.5p3open_source

adobe magentoMatch2.4.5p4open_source

adobe magentoMatch2.4.5p5open_source

adobe magentoMatch2.4.5p6open_source

adobe magentoMatch2.4.5p7open_source

adobe magentoMatch2.4.6-open_source

adobe magentoMatch2.4.6p1open_source

adobe magentoMatch2.4.6p2open_source

adobe magentoMatch2.4.6p3open_source

adobe magentoMatch2.4.6p4open_source

adobe magentoMatch2.4.6p5open_source

adobe magentoMatch2.4.7b1open_source

[
  {
    "defaultStatus": "affected",
    "product": "Adobe Commerce",
    "vendor": "Adobe",
    "versions": [
      {
        "lessThanOrEqual": "2.4.4-p8",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
helpx	www.helpx.adobe.com/security/products/magento/apsb24-40.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jun 2024 09:15Current

8.6High risk

Vulners AI Score8.6

CVSS37.2 - 9.1

EPSS0.05403

SSVC

CWE-20