Lucene search
+L

5 matches found

Github Security Blog
Github Security Blog
added 2024/08/14 12:35 p.m.5 views

Magento Improper Authorization leads to Security feature bypass

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information...

4.3CVSS6.6AI score0.00442EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2024/08/14 12:35 p.m.6 views

Magento Improper Authorization Leading to Security feature bypass

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information...

4.3CVSS6.6AI score0.00442EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2024/08/14 12:35 p.m.3 views

GHSA-4XMJ-F664-HV98 Magento Improper Authorization leads to Security feature bypass

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information...

4.3CVSS6.6AI score0.00442EPSS
Exploits0References3
OSV
OSV
added 2024/08/14 12:35 p.m.4 views

GHSA-4XGG-RW35-7MV5 Magento Improper Authorization leads to Security feature bypass

Magento versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and disclose minor information...

4.3CVSS6.6AI score0.00442EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/14 11:57 a.m.25 views

CVE-2024-39412 Adobe Commerce | Improper Authorization (CWE-285)

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and perform a minor integrity...

4.3CVSS0.00429EPSS
Exploits0References1
Rows per page
Query Builder