Vulnerabilities > CVE-2022-24086
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Adobe Commerce versions 2.4.3-p1 (and earlier) and 2.3.7-p2 (and earlier) are affected by an improper input validation vulnerability during the checkout process. Exploitation of this issue does not require user interaction and could result in arbitrary code execution.
Vulnerable Configurations
Related news
- Researchers create exploit for critical Magento bug, Adobe updates advisory (source)
- Another Critical RCE Discovered in Adobe Commerce and Magento Platforms (source)
- New Critical RCE Bug Found in Adobe Commerce, Magento (source)
- Adobe warns of second critical security hole in Adobe Commerce, Magento (source)
- Critical Magento vulnerability targeted in new surge of attacks (source)
- Magento stores targeted in massive surge of TrojanOrders attacks (source)