Magento improper authorization vulnerability in the integrations module

Magento versions 2.4.1 and earlier, 2.4.0-p1 and earlier and 2.3.6 and earlier are affected by an improper authorization vulnerability in the integrations module. Successful exploitation could lead to unauthorized access to restricted resources by an unauthenticated attacker. Access to the admin...

CVE-2021-21026

Magento versions 2.4.1 and earlier, 2.4.0-p1 and earlier and 2.3.6 and earlier are affected by an improper authorization vulnerability in the integrations module. Successful exploitation could lead to unauthorized access to restricted resources by an unauthenticated attacker. Access to the admin...

Authorization

Magento versions 2.4.1 and earlier, 2.4.0-p1 and earlier and 2.3.6 and earlier are affected by an improper authorization vulnerability in the integrations module. Successful exploitation could lead to unauthorized access to restricted resources by an unauthenticated attacker. Access to the admin...

CVE-2021-21026

Magento exposes an improper authorization vulnerability in the integrations module affecting Magento Community/OOS and Commerce editions: versions 2.4.1 and earlier, 2.4.0-p1 and earlier, and 2.3.6 and earlier are impacted. The root cause is improper authorization, potentially allowing an unauthe...

PT-2021-2309 · Adobe · Magento

Name of the Vulnerable Software and Affected Versions: Magento versions 2.4.1 and earlier Magento versions 2.4.0-p1 and earlier Magento versions 2.3.6 and earlier Description: The issue is related to improper authorization in the integrations module of Magento Commerce, which can be exploited by ...