Commerce B2b Security Vulnerabilities and Issues — Commerce B2b CVE List

Lucene search

AdobeCommerce B2b

9 matches found

CVE•added 2025/02/11 6:15 p.m.•60 views

CVE-2025-24437

Adobe Commerce versions 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11, 2.4.8-beta1 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to view or modify select information. Exploit...

5.4CVSS6.8AI score0.00047EPSS

CVE•added 2025/02/11 6:15 p.m.•58 views

CVE-2025-24428

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed...

5.4CVSS5.3AI score0.00035EPSS

CVE•added 2025/02/11 6:15 p.m.•57 views

CVE-2025-24425

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a Business Logic Error vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to circumvent intended security mechanisms by manipulating the ...

5.3CVSS5.6AI score0.00225EPSS

CVE•added 2024/10/10 10:15 a.m.•51 views

CVE-2024-45131

Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on confid...

5.4CVSS5.3AI score0.00091EPSS

CVE•added 2024/10/10 10:15 a.m.•49 views

CVE-2024-45128

5.4CVSS5.3AI score0.00132EPSS

CVE•added 2025/04/08 9:15 p.m.•49 views

CVE-2025-27190

Adobe Commerce versions 2.4.7-p4, 2.4.6-p9, 2.4.5-p11, 2.4.4-p12, 2.4.8-beta2 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access. ...

5.3CVSS7.1AI score0.00127EPSS

CVE•added 2025/04/08 9:15 p.m.•43 views

CVE-2025-27191

5.3CVSS7.1AI score0.00127EPSS

CVE•added 2024/10/10 10:15 a.m.•37 views

CVE-2024-45124

Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity. Exploita...

5.3CVSS5.1AI score0.00159EPSS

CVE•added 2025/06/10 4:15 p.m.•35 views

CVE-2025-27206

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain limited write access. Expl...

5.3CVSS5.3AI score0.00102EPSS