Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-29293

Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An admin privileged attacker could leverage this vulnerability to impact the availability of a user's minor feature. Exploitation of this issue does not require user interaction.

Published

2023-06-15T19:15:11.020

Last Modified

2024-11-21T07:56:48.747

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 2.7 (LOW)

Weaknesses
  • Type: Primary
    CWE-20
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.3.7 Yes
Application adobe commerce 2.4.0 Yes
Application adobe commerce 2.4.0 Yes
Application adobe commerce 2.4.0 Yes
Application adobe commerce 2.4.1 Yes
Application adobe commerce 2.4.1 Yes
Application adobe commerce 2.4.1 Yes
Application adobe commerce 2.4.2 Yes
Application adobe commerce 2.4.2 Yes
Application adobe commerce 2.4.2 Yes
Application adobe commerce 2.4.3 Yes
Application adobe commerce 2.4.3 Yes
Application adobe commerce 2.4.3 Yes
Application adobe commerce 2.4.4 Yes
Application adobe commerce 2.4.4 Yes
Application adobe commerce 2.4.4 Yes
Application adobe commerce 2.4.4 Yes
Application adobe commerce 2.4.5 Yes
Application adobe commerce 2.4.5 Yes
Application adobe commerce 2.4.5 Yes
Application adobe commerce 2.4.6 Yes
Application adobe magento 2.4.4 Yes
Application adobe magento 2.4.4 Yes
Application adobe magento 2.4.4 Yes
Application adobe magento 2.4.4 Yes
Application adobe magento 2.4.5 Yes
Application adobe magento 2.4.5 Yes
Application adobe magento 2.4.5 Yes
Application adobe magento 2.4.6 Yes
References