4 matches found
CVE-2025-24436
Adobe Commerce versions 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11, 2.4.8-beta1 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to view select information. Exploitation of...
CVE-2025-24436
creationtimestamp| type| source ---|---|--- 2025-02-11 18:20:11+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbk3n52x2a 2025-02-11 21:33:30+00:00| seen| https://t.me/cvedetector/17740...
CVE-2025-24436 Adobe Commerce | Improper Access Control (CWE-284)
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in Privilege escalation. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access...
CVE-2025-24436 Adobe Commerce | Incorrect Authorization (CWE-863)
Adobe Commerce versions 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11, 2.4.8-beta1 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to view select information. Exploitation of...