Arbitrary Code Execution Vulnerability in Adobe Commerce Versions 2.4.3-p1 and 2.3.7-p2

Arbitrary Code Execution Vulnerability in Adobe Commerce Versions 2.4.3-p1 and 2.3.7-p2

CVE-2022-24093 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Adobe Commerce versions 2.4.3-p1 (and earlier) and 2.3.7-p2 (and earlier) are affected by an improper input validation vulnerability. Exploitation of this issue does not require user interaction and could result in a post-authentication arbitrary code execution.

Learn more about our User Device Pen Test.