Code injection

2024-02-1514:15:00

PRIOn knowledge base

www.prio-n.com

adobe commerce

uncontrolled resource consumption

vulnerability

denial-of-service

high-privileged attacker

system resources

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.1%

JSON

Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to an application denial-of-service. A high-privileged attacker could leverage this vulnerability to exhaust system resources, causing the application to slow down or crash. Exploitation of this issue does not require user interaction.

CPENameOperatorVersion
commerceeq2.4.4
commerceeq2.4.5
commerceeq2.4.4 p1
commerceeq2.4.5 p1
commerceeq2.4.4 p2
commerceeq2.4.5 p2
commerceeq2.4.4 p3
commerceeq2.4.6
commerceeq2.4.4 p4
commerceeq2.4.5 p3

Name	Operator	Version
commerce	eq	2.4.4
commerce	eq	2.4.5
commerce	eq	2.4.4 p1
commerce	eq	2.4.5 p1
commerce	eq	2.4.4 p2
commerce	eq	2.4.5 p2
commerce	eq	2.4.4 p3
commerce	eq	2.4.6
commerce	eq	2.4.4 p4
commerce	eq	2.4.5 p3