Commerce B2b@1.5.2 Security Vulnerabilities and Issues — Commerce B2b@1.5.2 CVE List

Lucene search

AdobeCommerce B2b1.5.2

5 matches found

CVE•added 2025/06/10 4:15 p.m.•53 views

CVE-2025-43585

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access leading...

8.2CVSS8.2AI score0.00085EPSS

CVE•added 2025/06/10 4:15 p.m.•40 views

CVE-2025-47110

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in ...

8.4CVSS8.2AI score0.00111EPSS

CVE•added 2025/06/10 4:15 p.m.•39 views

CVE-2025-43586

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in privilege escalation. A low privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized elev...

8.1CVSS8.1AI score0.00067EPSS

CVE•added 2025/06/10 4:15 p.m.•35 views

CVE-2025-27207

6.5CVSS6.4AI score0.00067EPSS

CVE•added 2025/06/10 4:15 p.m.•34 views

CVE-2025-27206

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain limited write access. Expl...

5.3CVSS5.3AI score0.00102EPSS