Connect with us

Ecommerce Security

Adobe Patches Critical RCE Vulnerability in Magento2

Published

on

Adobe Patches Critical RCE Vulnerability in Magento2



Adobe Patches Critical RCE Vulnerability in Magento2

On Sunday, February 13th, Adobe pushed an emergency update to their Magento2 ecommerce software patching a critical unauthenticated remote code execution vulnerability. It is marked as CVE-2022-24086 with a CVSS score of 9.8. Website administrators of Magento stores should patch immediately.

Shop owners of Magento 2.3 or 2.4 stores can find the patch to install here. Instructions on how to install Magento security patches via Composer can be found here.

Our website firewall generic rules block RCE exploitation attempts by default but given the severity of the vulnerability website administrators should not leave their websites unpatched.

Continue reading Adobe Patches Critical RCE Vulnerability in Magento2 at Sucuri Blog.



Source link

Continue Reading
Click to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.