Security News > 2021 > August > Adobe fixes critical preauth vulnerabilities in Magento
2021-08-10 21:08
Adobe has released a large Patch Tuesday security update that fixes critical vulnerabilities in Magento and important bugs in Adobe Connect.
In total, Adobe fixed 29 vulnerabilities with today's updates.
Almost all Critical vulnerabilities could lead to arbitrary code execution, allowing threat actors to execute commands on vulnerable computers.
Out of the Adobe security updates released today, Magento has the most fixes, with 26 vulnerabilities.
Of particular concern are ten pre-authentication vulnerabilities in Magento that can be exploited without logging into the site.
Some of these preauth vulnerabilities are remote code execution and security bypasses, allowing a threat actor to control a site and it's server.
News URL
Related news
- Adobe Patches 11 Critical ColdFusion Flaws Amid 30 Total Vulnerabilities Discovered (source)
- GitLab patches critical authentication bypass vulnerabilities (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- OpenAI now pays researchers $100,000 for critical vulnerabilities (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)
- Most critical vulnerabilities aren’t worth your attention (source)