CVE-2024-39411

🗓️ 14 Aug 2024 11:57:12Reported by adobeType

Adobe Commerce affected by Improper Authorization vulnerabilit

Reporter	Title	Published	Views	Family All 13
Tenable Nessus	Adobe Commerce Multiple Vulnerabilities (APSB24-61)	23 Jul 202500:00	–	nessus
Circl	CVE-2024-39411	14 Aug 202414:52	–	circl
CNNVD	Adobe Commerce 安全漏洞	14 Aug 202400:00	–	cnnvd
CNVD	Adobe Commerce elevation of privilege vulnerability (CNVD-2024-40529)	16 Aug 202400:00	–	cnvd
Cvelist	CVE-2024-39411 Adobe Commerce \| Improper Authorization (CWE-285)	14 Aug 202411:57	–	cvelist
EUVD	EUVD-2024-37957	3 Oct 202520:07	–	euvd
Github Security Blog	Magento Improper Authorization leads to security feature bypass	14 Aug 202412:35	–	github
NCSC	Vulnerabilities fixed in Adobe Commerce and Magento	14 Aug 202412:58	–	ncsc
NVD	CVE-2024-39411	14 Aug 202412:15	–	nvd
OSV	GHSA-QM77-MQF3-FMHQ Magento Improper Authorization leads to security feature bypass	14 Aug 202412:35	–	osv

NVD

Vulners

Vulnrichment

Node

adobe commerceRange≤2.4.3

adobe commerceMatch2.4.4-

adobe commerceMatch2.4.4p1

adobe commerceMatch2.4.4p2

adobe commerceMatch2.4.4p3

adobe commerceMatch2.4.4p4

adobe commerceMatch2.4.4p5

adobe commerceMatch2.4.4p6

adobe commerceMatch2.4.4p7

adobe commerceMatch2.4.4p8

adobe commerceMatch2.4.4p9

adobe commerceMatch2.4.5-

adobe commerceMatch2.4.5p1

adobe commerceMatch2.4.5p2

adobe commerceMatch2.4.5p3

adobe commerceMatch2.4.5p4

adobe commerceMatch2.4.5p5

adobe commerceMatch2.4.5p6

adobe commerceMatch2.4.5p7

adobe commerceMatch2.4.5p8

adobe commerceMatch2.4.6-

adobe commerceMatch2.4.6p1

adobe commerceMatch2.4.6p2

adobe commerceMatch2.4.6p3

adobe commerceMatch2.4.6p4

adobe commerceMatch2.4.6p5

adobe commerceMatch2.4.6p6

adobe commerceMatch2.4.7-

adobe commerceMatch2.4.7b1

adobe commerceMatch2.4.7b2

adobe commerceMatch2.4.7p1

Node

adobe magentoRange≤2.4.3open_source

adobe magentoMatch2.4.4-open_source

adobe magentoMatch2.4.4p1open_source

adobe magentoMatch2.4.4p2open_source

adobe magentoMatch2.4.4p3open_source

adobe magentoMatch2.4.4p4open_source

adobe magentoMatch2.4.4p5open_source

adobe magentoMatch2.4.4p6open_source

adobe magentoMatch2.4.4p7open_source

adobe magentoMatch2.4.4p8open_source

adobe magentoMatch2.4.4p9open_source

adobe magentoMatch2.4.5-open_source

adobe magentoMatch2.4.5p1open_source

adobe magentoMatch2.4.5p2open_source

adobe magentoMatch2.4.5p3open_source

adobe magentoMatch2.4.5p4open_source

adobe magentoMatch2.4.5p5open_source

adobe magentoMatch2.4.5p6open_source

adobe magentoMatch2.4.5p7open_source

adobe magentoMatch2.4.5p8open_source

adobe magentoMatch2.4.6-open_source

adobe magentoMatch2.4.6p1open_source

adobe magentoMatch2.4.6p2open_source

adobe magentoMatch2.4.6p3open_source

adobe magentoMatch2.4.6p4open_source

adobe magentoMatch2.4.6p5open_source

adobe magentoMatch2.4.6p6open_source

adobe magentoMatch2.4.7-open_source

adobe magentoMatch2.4.7b1open_source

adobe magentoMatch2.4.7b2open_source

adobe magentoMatch2.4.7p1open_source

[
  {
    "defaultStatus": "affected",
    "product": "Adobe Commerce",
    "vendor": "Adobe",
    "versions": [
      {
        "lessThanOrEqual": "2.4.4-p9",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
helpx	www.helpx.adobe.com/security/products/magento/apsb24-61.html

17 Sep 2024 11:07Current

4.5Medium risk

Vulners AI Score4.5

CVSS 3.14.3

EPSS0.00306

SSVC

CWE-285